JVN#55063777: Google Captcha (reCAPTCHA) by BestWebSoft vulnerable to CAPTCHA authentication bypass

2015-03-03T00:00:00
ID JVN:55063777
Type jvn
Reporter Japan Vulnerability Notes
Modified 2015-03-03T00:00:00

Description

## Description

Google Captcha (reCAPTCHA) by BestWebSoft is a plugin for WordPress. Google Captcha (reCAPTCHA) by BestWebSoft contains a CAPTCHA authentication bypass vulnerability (CWE-254).

## Impact

If this vulnerability is exploited, an attacker may be able to successfully login to WordPress and access an administrative interface without authentication.

## Solution

Update the Software
Update to the latest version according to the information provided by the developer.

## Products Affected

  • Google Captcha (reCAPTCHA) by BestWebSoft V1.12 and earlier