CVE-2022-1600 – The YOP Poll WordPress plugin before 6.4.3 prioritizes getting a visitor’s IP from certain …

Vuln ID: CVE-2022-1600

Published:  2022-08-01  13:15:09Z

Description: The YOP Poll WordPress plugin before 6.4.3 prioritizes getting a visitor’s IP from certain HTTP headers over PHP’s REMOTE_ADDR, which makes it possible to bypass IP-based limitations to vote in certain situations.

Source: NVD.NIST.GOV