IP Spoofing Vulnerability in check_is_login_page() Function

IP Spoofing Vulnerability in check_is_login_page() Function

CVE-2022-1579 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

The function check_is_login_page() uses headers for the IP check, which can be easily spoofed.

Learn more about our Web Application Penetration Testing UK.