Vulnerability Details CVE-2023-4281
This Activity Log WordPress plugin before 2.8.8 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.7%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2023-4281
-
cpe:2.3:a:activity_log_project:activity_log:-
-
cpe:2.3:a:activity_log_project:activity_log:1.0
-
cpe:2.3:a:activity_log_project:activity_log:1.0.1
-
cpe:2.3:a:activity_log_project:activity_log:1.0.2
-
cpe:2.3:a:activity_log_project:activity_log:1.0.3
-
cpe:2.3:a:activity_log_project:activity_log:1.0.4
-
cpe:2.3:a:activity_log_project:activity_log:1.0.5
-
cpe:2.3:a:activity_log_project:activity_log:1.0.6
-
cpe:2.3:a:activity_log_project:activity_log:1.0.7
-
cpe:2.3:a:activity_log_project:activity_log:1.0.8
-
cpe:2.3:a:activity_log_project:activity_log:2.0.0
-
cpe:2.3:a:activity_log_project:activity_log:2.0.1
-
cpe:2.3:a:activity_log_project:activity_log:2.0.2
-
cpe:2.3:a:activity_log_project:activity_log:2.0.3
-
cpe:2.3:a:activity_log_project:activity_log:2.0.4
-
cpe:2.3:a:activity_log_project:activity_log:2.0.5
-
cpe:2.3:a:activity_log_project:activity_log:2.0.6
-
cpe:2.3:a:activity_log_project:activity_log:2.0.7
-
cpe:2.3:a:activity_log_project:activity_log:2.1.0
-
cpe:2.3:a:activity_log_project:activity_log:2.1.1
-
cpe:2.3:a:activity_log_project:activity_log:2.1.10
-
cpe:2.3:a:activity_log_project:activity_log:2.1.11
-
cpe:2.3:a:activity_log_project:activity_log:2.1.12
-
cpe:2.3:a:activity_log_project:activity_log:2.1.13
-
cpe:2.3:a:activity_log_project:activity_log:2.1.14
-
cpe:2.3:a:activity_log_project:activity_log:2.1.15
-
cpe:2.3:a:activity_log_project:activity_log:2.1.16
-
cpe:2.3:a:activity_log_project:activity_log:2.1.2
-
cpe:2.3:a:activity_log_project:activity_log:2.1.3
-
cpe:2.3:a:activity_log_project:activity_log:2.1.4
-
cpe:2.3:a:activity_log_project:activity_log:2.1.5
-
cpe:2.3:a:activity_log_project:activity_log:2.1.6
-
cpe:2.3:a:activity_log_project:activity_log:2.1.7
-
cpe:2.3:a:activity_log_project:activity_log:2.1.8
-
cpe:2.3:a:activity_log_project:activity_log:2.1.9
-
cpe:2.3:a:activity_log_project:activity_log:2.2.0
-
cpe:2.3:a:activity_log_project:activity_log:2.2.1
-
cpe:2.3:a:activity_log_project:activity_log:2.2.10
-
cpe:2.3:a:activity_log_project:activity_log:2.2.11
-
cpe:2.3:a:activity_log_project:activity_log:2.2.12
-
cpe:2.3:a:activity_log_project:activity_log:2.2.2
-
cpe:2.3:a:activity_log_project:activity_log:2.2.3
-
cpe:2.3:a:activity_log_project:activity_log:2.2.4
-
cpe:2.3:a:activity_log_project:activity_log:2.2.5
-
cpe:2.3:a:activity_log_project:activity_log:2.2.6
-
cpe:2.3:a:activity_log_project:activity_log:2.2.7
-
cpe:2.3:a:activity_log_project:activity_log:2.2.8
-
cpe:2.3:a:activity_log_project:activity_log:2.2.9
-
cpe:2.3:a:activity_log_project:activity_log:2.3.0
-
cpe:2.3:a:activity_log_project:activity_log:2.3.1
-
cpe:2.3:a:activity_log_project:activity_log:2.3.2
-
cpe:2.3:a:activity_log_project:activity_log:2.3.3
-
cpe:2.3:a:activity_log_project:activity_log:2.3.4
-
cpe:2.3:a:activity_log_project:activity_log:2.3.5
-
cpe:2.3:a:activity_log_project:activity_log:2.3.6
-
cpe:2.3:a:activity_log_project:activity_log:2.4.0
-
cpe:2.3:a:activity_log_project:activity_log:2.4.1
-
cpe:2.3:a:activity_log_project:activity_log:2.5.0
-
cpe:2.3:a:activity_log_project:activity_log:2.5.1
-
cpe:2.3:a:activity_log_project:activity_log:2.5.2