Vulnerabilities > Activity LOG Project > Activity LOG > 2.2.3

DATE CVE VULNERABILITY TITLE RISK
2023-09-25 CVE-2023-4281 Unspecified vulnerability in Activity LOG Project Activity LOG
This Activity Log WordPress plugin before 2.8.8 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value.
network
low complexity
activity-log-project
5.3
5.3
2022-11-08 CVE-2022-27858 Unspecified vulnerability in Activity LOG Project Activity LOG
CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress.
network
low complexity
activity-log-project
critical
 9.8
9.8