Lucene search
WPScanCVELIST:CVE-2022-1801HistoryJun 20, 2022 - 10:25 a.m.
CVE-2022-1801 Very Simple Contact Form < 11.6 - Captcha bypass
2022-06-2010:25:59
CWE-804
WPScan
www.cve.org
2
contact form
wordpress
captcha bypass
vulnerability
spam bots
EPSS
0.001
Percentile
33.9%
The Very Simple Contact Form WordPress plugin before 11.6 exposes the solution to the captcha in the rendered contact form, both as hidden input fields and as plain text in the page, making it very easy for bots to bypass the captcha check, rendering the page a likely target for spam bots.
CNA Affected
[
{
"product": "Very Simple Contact Form",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.6",
"status": "affected",
"version": "11.6",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Very Simple Contact Form < 11.6 - Captcha bypass
2022-05-30 00:00:00
cve
cve
CVE-2022-1801
2022-06-20 11:15:09
prion
prion
Authentication flaw
2022-06-20 11:15:00
cnvd
cnvd
WordPress Very Simple Contact Form plugin captcha bypass vulnerability
2022-06-22 00:00:00
wpexploit
wpexploit
Very Simple Contact Form < 11.6 - Captcha bypass
2022-05-30 00:00:00
nvd
nvd
CVE-2022-1801
2022-06-20 11:15:09