Vulnerability CVE-2023-4631
Published: 2023-09-25

Description:
The DoLogin Security WordPress plugin before 3.7 uses headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing.

Type:

CWE-290

 (Authentication Bypass by Spoofing)

 References:
https://wpscan.com/vulnerability/28613fc7-1400-4553-bcc3-24df1cee418e
Copyright 2026, cxsecurity.com

 

Back to Top