Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WP-Ban Security Bypass - CVE-2014-6230 - Vulnerability Database
WP Plugin Wp Ban

WordPress Plugin WP-Ban Security Bypass - CVE-2014-6230

Medium
Reference: CVE-2014-6230
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-6230
Title: WordPress Plugin WP-Ban Security Bypass
Overview:

WordPress Plugin WP-Ban is prone to a security bypass vulnerability. Attackers can exploit this vulnerability in some circumstances by setting the X-Forwarded-For HTTP header field and thus bypassing IP blacklisting functionality. WordPress Plugin WP-Ban version 1.63 is vulnerable prior versions may also be affected.