RSS   Vulnerabilities for 'Knock knock'   RSS

2020-05-25
 
CVE-2020-13486

CWE-601
 
 
The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection.

 
 
CVE-2020-13485

CWE-697
 
 
The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.

 

 >>> Vendor: Verbb 3 Products
Knock knock
Image resizer
Comments

Copyright 2024, cxsecurity.com

 

Back to Top