CVE-2023-4631: 
WordPress vulnerability analysis and mitigation

The DoLogin Security WordPress plugin before version 3.7 contains a vulnerability identified as CVE-2023-4631. This security flaw was discovered by researchers Bartlomiej Marek and Tomasz Swiadek and was publicly disclosed on August 28, 2023. The vulnerability affects the plugin's IP address handling mechanism (WPScan).

The vulnerability stems from the plugin's improper handling of HTTP headers, specifically the X-Forwarded-For header, when retrieving the IP address of incoming requests. The issue has been assigned a CVSS v3.1 base score of 5.3 (Medium) with a vector string of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N. It is classified under CWE-290 and falls into the OWASP Top 10 category A5: Broken Access Control (NVD, WPScan).

The vulnerability allows attackers to perform IP spoofing attacks. When exploited, an attacker can manipulate their apparent IP address in the plugin's 'Login Attempts Log', potentially bypassing IP-based security controls (WPScan).

The vulnerability has been fixed in version 3.7 of the DoLogin Security plugin. Users are strongly advised to update to this version or later to mitigate the security risk (WPScan).