Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
24048.0%CRITICAL

Related CVEs

4
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2022-4100The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up to, and including 9.4 due to the plugin improperly checking for a visitor's IP address. This makes it possible for an attacker whose IP address has been blocked to bypass this control by setting the X-Forwarded-For: HTTP header to an IP Address that hasn't been blocked.MEDIUM5.326.6%Aug 31, 2024
CVE-2021-37598WP Cerber before 8.9.3 allows bypass of /wp-json access control via a trailing ? character.MEDIUM5.3Aug 19, 2021
CVE-2021-37597WP Cerber before 8.9.3 allows MFA bypass via wordpress_logged_in_[hash] manipulation.CRITICAL9.8Aug 19, 2021
CVE-2016-10990The wp-cerber plugin before 2.7 for WordPress has XSS via the X-Forwarded-For HTTP header.MEDIUM6.169.5%Sep 17, 2019