vars.php in WordPress 2.0.2, possibly when running on Mac OS X, allows remote attackers to spoof their IP address via a PC_REMOTE_ADDR HTTP header, which vars.php uses to redefine $_SERVER['REMOTE_ADDR'].
References
Configurations
Information
Published : 2006-05-31 03:06
Updated : 2018-10-18 09:41
NVD link : CVE-2006-2702
Mitre link : CVE-2006-2702
JSON object : View
CWE
Products Affected
wordpress
- wordpress