Vulnerabilities > CVE-2022-1579 - Unspecified vulnerability in Gunkastudios Login Block IPS 1.0.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
gunkastudios
NVD
Published: 2022-11-21
Updated: 2023-11-07

Summary

The function check_is_login_page() uses headers for the IP check, which can be easily spoofed.

Vulnerable Configurations

Part Description Count
Application
Gunkastudios
2

References