CVE-2022-1601

Name of the Vulnerable Software and Affected Versions User Access Manager WordPress plugin versions prior to 2.2.18

Description The issue allows attackers to access restricted content in certain situations by prioritizing a visitor's IP from certain HTTP headers over PHP's REMOTE ADDR.

Recommendations For versions prior to 2.2.18, update to version 2.2.18 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive content until the update is applied.