Verbb: >> Knock Knock >> 1.2.1 Security Vulnerabilities
The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.
CVSS Score
9.1
EPSS Score
0.003
Published
2020-05-25
The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-05-25