Posted by jvoisin on Mar 16
I’m not sure I understand what’s going on here: The “vulnerability” is
that “X-Forwarded-For” can be manipulated by the client?
This doesn’t make any sense.
There is nothing on WordPress’ website (
https://wordpress.org/news/category/security/ ) about an issue like this
one, nor on the mitre’s website (
Can you please elaborate on…
– Read More – Full Disclosure