Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2023-48753

Disclosure Date: June 04, 2024 (last updated June 04, 2024)
Authentication Bypass by Spoofing vulnerability in 10up Restricted Site Access allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Restricted Site Access: from n/a through 7.4.1.
0
0
Attacker Value
Unknown

CVE-2022-1613

Disclosure Date: September 26, 2022 (last updated October 08, 2023)
The Restricted Site Access WordPress plugin before 7.3.2 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based limitations in certain situations.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0