If an authorized malicious user put some abitrary text as X-Forwarded-For, Proxy-Client-IP or WL-Proxy-Client-IP header value, this value will be recorded to the database, and will be shown as the ipAddress in the Application Notifications list.