cleantalk
Vulnerabilities and Security Researches

iQ Block Country, CVE-2022-1762

CVE, Research URL

CVE-2022-1762

Home page URL

Security reports for iQ Block Country

Application

iQ Block Country

Published on
Jun 13, 2022
Research Description
The iQ Block Country WordPress plugin before 1.2.20 does not properly checks HTTP headers in order to validate the origin IP address, allowing threat actors to bypass it's block feature by spoofing the headers.
Affected versions
max 1.1.20.
Status
vulnerable
Previous vulnerability researches
Block Country (CVE-2025-48077) , Nov 11, 2025
iQ Block Country (CVE-2022-1762) , Jun 06, 2024
iQ Block Country (CVE-2021-36873) , Jun 06, 2024
iQ Block Country (CVE-2022-41155) , Jun 06, 2024
iQ Block Country (CVE-2022-0246) , Jun 06, 2024
New vulnerability
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2025-60188) , Nov 11, 2025
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2025-60187) , Nov 11, 2025
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2025-62895) , Nov 11, 2025
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2025-60195) , Nov 11, 2025
Client Invoicing by Sprout Invoices – Easy Estimates and Invoices for WordPress (CVE-2025-64229) , Nov 11, 2025