CVE-2022-1613 Information

Description

The Restricted Site Access WordPress plugin before 7.3.2 prioritizes getting a visitor’s IP from certain HTTP headers over PHP’s REMOTE_ADDR which makes it possible to bypass IP-based limitations in certain situations.

Reference

https://wpscan.com/vulnerability/c03863ef-9ac9-402b-8f8d-9559c9988e2b