{"vulnerability": "cve-2022-23556", "sightings": [{"uuid": "a34b5430-618b-40e8-bc8e-0d11a75e049e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23556", "type": "seen", "source": "https://t.me/cibsecurity/55193", "content": "\u203c CVE-2022-23556 \u203c\n\nCodeIgniter is a PHP full-stack web framework. This vulnerability may allow attackers to spoof their IP address when the server is behind a reverse proxy. This issue has been patched, please upgrade to version 4.2.11 or later, and configure `Config\\App::$proxyIPs`. As a workaround, do not use `$request->getIPAddress()`.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:30:13.000000Z"}]}