Description
IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules, an attacker could spoof their IP address for logging and PHP scripts. Note this issue was fixed in Apache HTTP Server 2.4.24 but was retrospectively allocated a low severity CVE in 2020.
Remediation
References
Related Vulnerabilities
WordPress Plugin Related Posts for WordPress Cross-Site Scripting (2.0.3)
WordPress 4.3.x Same Origin Method Execution (SOME) Vulnerability (4.3 - 4.3.3)
Lighttpd Cryptographic Issues Vulnerability (CVE-2013-1427)
WordPress Plugin Fonts-Google Fonts Typography Cross-Site Scripting (3.0.2)
WordPress Plugin NS Utilities Unspecified Vulnerability (1.0)