CVE-2006-2702

CVE-2006-2702 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

vars.php in WordPress 2.0.2, possibly when running on Mac OS X, allows remote attackers to spoof their IP address via a PC_REMOTE_ADDR HTTP header, which vars.php uses to redefine $_SERVER['REMOTE_ADDR'].

Learn more about our Wordpress Pen Testing.