CVE-2020-13485

The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.
Configurations

Configuration 1

cpe:2.3:a:verbb:knock_knock:*:*:*:*:*:craft_cms:*:*

Information

Published : 2020-05-25 11:15

Updated : 2020-05-26 10:04


NVD link : CVE-2020-13485

Mitre link : CVE-2020-13485

Products Affected
No products.
CWE