CVE-2022-24594

CVE-2022-24594

EPSS 0.8%

In waline 1.6.1, an attacker can submit messages using X-Forwarded-For to forge any IP address.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/walinejs/waline/discussions/792 https://github.com/walinejs/waline/issues/785