bl-kernel/security.class.php in Bludit 3.9.2 allows malicious users to bypass a brute-force protection mechanism by using many different forged X-Forwarded-For or Client-IP HTTP headers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bludit bludit 3.9.2 |