EUVD-2024-50549

Malicious code in bioql PyPI...

EUVD-2023-36842

Malicious code in bioql PyPI...

EUVD-2024-49386

Malicious code in bioql PyPI...

EUVD-2025-28163

Malicious code in bioql PyPI...

PT-2025-27868 · Unknown · Contact Form 7

Name of the Vulnerable Software and Affected Versions: Contact Form 7 reCAPTCHA versions 1.2.0 and earlier Description: The issue is related to a Cross Site Request Forgery CSRF problem. It affects the reCAPTCHA component of Contact Form 7, allowing unauthorized requests to be made on behalf of a...

WordPress plugin Contact Form 7 reCAPTCHA 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in...

CVE-2025-48243

Cross-Site Request Forgery CSRF vulnerability in sminozzi reCAPTCHA for all recaptcha-for-all allows Cross Site Request Forgery.This issue affects reCAPTCHA for all: from n/a through = 2.26...

CVE-2025-30862

CVE-2025-30862 is a CSRF vulnerability in the WordPress plugin reCAPTCHA for all (vulnerable up to and including 2.22). Exploitation details are not provided beyond CSRF context, but Patchstack/NVD entries indicate the issue has a CVSS v3.1 base score of 4.3 (Medium) with no privileges required a...

CVE-2025-1262

CVE-2025-1262 refers to the WordPress plugin Advanced Google reCaptcha (up to and including v1.27). The vulnerability allows an unauthenticated attacker to bypass the built-in Math CAPTCHA verification, effectively defeating CAPTCHA protection. Public sources (NVD/Red Hat) confirm the issue and i...

WordPress Advanced Google reCAPTCHA plugin <= 1.25 - Brute Force Protection IP Unblock vulnerability

Brute Force Protection IP Unblock vulnerability discovered by Max Boll b0lli in WordPress Plugin Advanced Google reCAPTCHA versions = 1.25...

CVE-2023-32599

Missing Authorization vulnerability in Bill Minozzi reCAPTCHA for all allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects reCAPTCHA for all: from n/a through 1.22...

CVE-2023-32599

CVE-2023-32599 corresponds to a Missing Authorization (Broken Access Control) vulnerability in the WordPress plugin WordPress reCAPTCHA for all (recaptcha-for-all) ≤ 1.22, with a fix available in 1.23. The vulnerability allows exploitation of incorrectly configured access control security levels ...

CVE-2023-32599 WordPress reCAPTCHA for all plugin <= 1.22 - Broken Access Control vulnerability

Missing Authorization vulnerability in sminozzi reCAPTCHA for all recaptcha-for-all allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects reCAPTCHA for all: from n/a through = 1.22...

CVE-2022-3831 reCAPTCHA <= 1.6 - Admin+ Stored XSS

The reCAPTCHA WordPress plugin through 1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2022-2913 Login No Captcha reCAPTCHA < 1.7 - IP Check Bypass

The Login No Captcha reCAPTCHA WordPress plugin before 1.7 doesn't check the proper IP address allowing attackers to spoof IP addresses on the allow list and bypass the need for captcha on the login screen...

CVE-2015-6830

libraries/plugins/auth/AuthenticationCookie.class.php in phpMyAdmin 4.3.x before 4.3.13.2 and 4.4.x before 4.4.14.1 allows remote attackers to bypass a multiple-reCaptcha protection mechanism against brute-force credential guessing by providing a correct response to a single reCaptcha...