N4Nj0

Name of the Vulnerable Software and Affected Versions: Pi-hole versions 5.0 through 5.1.1 Description: The issue allows a remote user to inject arbitrary web script or HTML due to incorrect sanitization of user-supplied data, achieving a Reflected Cross-Site Scripting attack against other users and potentially stealing the session cookie. This is done via the Options header to the "admin/" URI. Recommendations: For versions 5.0 through 5.1.1, consider disabling access to the "admin/" URI until a patch is available to prevent exploitation. Restrict the use of the Options header in the admin/ URI to minimize the risk of Reflected Cross-Site Scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** limit-login-attempts-reloaded plugin versions prior to 2.17.4 for WordPress **Description** The issue allows a bypass of rate limits per IP address because the `X-Forwarded-For` header can be forged. When the plugin is configured to accept an arbitrary header for the client source IP address, a malicious user can perform a brute force attack without being limited, as the client IP header accepts any arbitrary string. This is possible when randomizing the header input, resulting in the login count never reaching the maximum allowed retries. **Recommendations** For limit-login-attempts-reloaded plugin versions prior to 2.17.4, update to version 2.17.4 or later to resolve the issue. As a temporary workaround, consider disabling the acceptance of arbitrary headers for the client source IP address until a patch is available. Restrict access to the `LimitLoginAttempts.php` file to minimize the risk of exploitation. Avoid using the `X-Forwarded-For` header in the affected plugin until the issue is resolved.