IP Address Spoofing Vulnerability in Brizy Page Builder Plugin for WordPress
CVE-2023-2897

5.3MEDIUM

Key Information:

Vendor

Wordpress
Status
Brizy – Page Builder
Vendor
CVE Published:
9 June 2023

What is CVE-2023-2897?

The Brizy Page Builder plugin for WordPress presents a vulnerability characterized by IP Address Spoofing due to an implicit trust of user-supplied IP addresses from the 'X-Forwarded-For' HTTP header. This vulnerability impacts versions up to and including 2.4.18, permitting attackers to bypass maintenance mode protection by submitting a whitelisted IP address in the header. Consequently, this can result in unauthorized access to restricted functionalities and possible exposure of sensitive information.

Affected Version(s)

Brizy – Page Builder * <= 2.4.18

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...
https://plugins.trac.wordpress.org/changeset/2919443/brizy

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Alex Thomas
.