CVE-2023-5239

Published: Nov 27, 2023

Modified: Aug 2, 2024

PUBLISHED

Description

The Security & Malware scan by CleanTalk WordPress plugin before 2.121 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to bypass bruteforce protection.

Vendor	Product	Versions
Unknown	Security & Malware scan by CleanTalk	affected `0 - < 2.121`

References

https://wpscan.com/vulnerability/1d748f91-773b-49d6-8f68-a27d397713c3

exploit

vdb-entry

technical-description

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-5239

Description

Affected Products

References