Reflected Cross-Site Scripting (XSS) vulnerability discovered by ZhongFu Su aka JrXnm (WuHan University) in WordPress Contact Form 7 Captcha plugin (versions <= 0.1.1).
Update the WordPress Contact Form 7 Captcha plugin to the latest available version (at least 0.1.2).