AA Block Country WordPress Plugin IP Address Spoofing Vulnerability

Vulnerability

A vulnerability allowing IP address spoofing has been identified in the AA Block Country plugin for WordPress, affecting versions through 1.0.1. The issue arises because the plugin relies on user-supplied headers, such as X-Forwarded-For, to determine the client's IP address. This approach lacks proper validation and does not account for whether the server is behind a trusted proxy. As a result, unauthenticated attackers can bypass IP-based access restrictions by spoofing their IP addresses via the X-Forwarded-For header.

Impact

Exploitation of this vulnerability could allow unauthenticated users to bypass IP-based access controls, potentially leading to unauthorized access or actions on the WordPress site.

Added: Jan 7, 2026, 4:38 PM

Updated: Jan 7, 2026, 4:38 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.1

remediation

0.0

relevance

1.8

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.1

remediation

0.0

relevance

1.8

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AA Block Country WordPress Plugin IP Address Spoofing Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating