← Back

Fluentauth

fluentauth

Vendor: Wpmanageninja • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-4746
1Wpmanageninja
1Fluentauth
Apr 2, 2025
Jan 23, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
The FluentAuth WordPress plugin before 1.0.2 prioritizes getting a visitor's IP address from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass the IP-based blocks set by the plugin.