CVE-2024-35538

MEDIUM

Typecho 1.3.0 - Client IP Spoofing via X-Forwarded-For or Client-Ip Headers

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-35538. PoCs published by cyberaz0r.

AI-analyzed exploit summary The repository contains functional Go exploit code for CVE-2024-35538, which targets a client IP spoofing vulnerability in Typecho <= 1.3.0. The exploit automates the submission of spam comments with spoofed IP addresses by bypassing form token validation via JavaScript execution.

Description

Typecho v1.3.0 was discovered to contain a Client IP Spoofing vulnerability, which allows attackers to falsify their IP addresses by specifying an arbitrary IP as value of X-Forwarded-For or Client-Ip headers while performing HTTP requests.

Exploits (1)

nomisec WORKING POC 1 stars
by cyberaz0r · poc
https://github.com/cyberaz0r/Typecho-Multiple-Vulnerabilities

The repository contains functional Go exploit code for CVE-2024-35538, which targets a client IP spoofing vulnerability in Typecho <= 1.3.0. The exploit automates the submission of spam comments with spoofed IP addresses by bypassing form token validation via JavaScript execution.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Typecho <= 1.3.0
No auth needed
Prerequisites: Target URL with Typecho installation · Network access to the target
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Release Notes, Third Party Advisory
https://cyberaz0r.info/2024/08/typecho-multiple-vulnerabilities/

Scores

CVSS v3 5.3
EPSS 0.0059
EPSS Percentile 43.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-290 CWE-444
Status published
Products (1)
typecho/typecho 1.3.0
Published Aug 19, 2024
Tracked Since Feb 18, 2026