The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2022-06-13T12:42:39

Updated: 2024-08-03T00:16:59.806Z

Reserved: 2022-05-17T00:00:00

Link: CVE-2022-1762

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-06-13T13:15:12.210

Modified: 2024-11-21T06:41:24.790

Link: CVE-2022-1762

cve-icon Redhat

No data.