Lucene search
K

450 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:19 a.m.8 views

CVE-2024-8739

The ReCaptcha Integration for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS6.3AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:51 a.m.9 views

CVE-2023-28167

Cross-Site Request Forgery CSRF vulnerability in Vsourz Digital CF7 Invisible reCAPTCHA plugin = 1.3.3 versions...

8.8CVSS7.1AI score0.00301EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.6 views

CVE-2023-32599

Missing Authorization vulnerability in Bill Minozzi reCAPTCHA for all allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects reCAPTCHA for all: from n/a through 1.22...

4.3CVSS8.5AI score0.00454EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:50 a.m.9 views

CVE-2023-0085

The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to reCaptcha Bypass in versions up to, and including, 3.2.1. This is due to insufficient server side checking on the captcha value submitted during a form submission. This makes it possible for unauthenticated attackers...

5.3CVSS6.8AI score0.00686EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.24 views

CVE-2022-3831

The reCAPTCHA WordPress plugin through 1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.6AI score0.00532EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:12 p.m.9 views

CVE-2021-39362

An XSS issue was discovered in ReCaptcha Solver 5.7. A response from Anti-Captcha.com, RuCaptcha.com, 2captcha.com, DEATHbyCAPTCHA.com, ImageTyperz.com, or BestCaptchaSolver.com in setCaptchaCode is inserted into the DOM as HTML, resulting in full control over the user's browser by these servers...

6.1CVSS6.1AI score0.00581EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:51 p.m.14 views

CVE-2020-8594

The Ninja Forms plugin 3.4.22 for WordPress has Multiple Stored XSS vulnerabilities via ninjaformsrecaptchasitekey, ninjaformsrecaptchasecretkey, ninjaformsrecaptchalang, or ninjaformsdateformat...

5.4CVSS6.2AI score0.01195EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 3:14 p.m.9 views

CVE-2025-48243

Cross-Site Request Forgery CSRF vulnerability in sminozzi reCAPTCHA for all recaptcha-for-all allows Cross Site Request Forgery.This issue affects reCAPTCHA for all: from n/a through = 2.26...

4.3CVSS5.9AI score0.0014EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 3:13 p.m.8 views

CVE-2025-48233

Cross-Site Request Forgery CSRF vulnerability in affmngr Affiliates Manager Google reCAPTCHA Integration affiliates-manager-google-recaptcha-integration allows Stored XSS.This issue affects Affiliates Manager Google reCAPTCHA Integration: from n/a through = 1.0.6...

7.1CVSS5.9AI score0.0013EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/19 4:28 p.m.7 views

WordPress reCAPTCHA for all plugin <= 2.26 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Nabil Irawan in WordPress Plugin reCAPTCHA for all versions = 2.26...

4.3CVSS6.6AI score0.0014EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/19 4:26 p.m.7 views

WordPress Affiliates Manager Google reCAPTCHA Integration plugin <= 1.0.6 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by johska in WordPress Plugin Affiliates Manager Google reCAPTCHA Integration versions = 1.0.6...

7.1CVSS5.9AI score0.0013EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/05/19 3:15 p.m.13 views

CVE-2025-48243

Cross-Site Request Forgery CSRF vulnerability in sminozzi reCAPTCHA for all recaptcha-for-all allows Cross Site Request Forgery.This issue affects reCAPTCHA for all: from n/a through = 2.26...

4.3CVSS0.0014EPSS
Exploits0References1
NVD
NVD
added 2025/05/19 3:15 p.m.9 views

CVE-2025-48233

Cross-Site Request Forgery CSRF vulnerability in affmngr Affiliates Manager Google reCAPTCHA Integration affiliates-manager-google-recaptcha-integration allows Stored XSS.This issue affects Affiliates Manager Google reCAPTCHA Integration: from n/a through = 1.0.6...

7.1CVSS0.0013EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/19 2:44 p.m.7 views

CVE-2025-48243 WordPress reCAPTCHA for all <= 2.26 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Bill Minozzi reCAPTCHA for all allows Cross Site Request Forgery. This issue affects reCAPTCHA for all: from n/a through 2.26...

4.3CVSS4.7AI score0.0014EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 2:44 p.m.24 views

CVE-2025-48243

CVE-2025-48243: WordPress reCAPTCHA for all plugin suffers a CSRF vulnerability in versions up to 2.26. Exploitation details are not provided in the Initial document, but Patchstack and NVD entries confirm a CSRF weakness affecting the plugin. The CVSS v3.1 base score is 4.3 (Medium) with no conf...

4.3CVSS5.9AI score0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/19 2:44 p.m.17 views

CVE-2025-48243 WordPress reCAPTCHA for all plugin <= 2.26 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in sminozzi reCAPTCHA for all recaptcha-for-all allows Cross Site Request Forgery.This issue affects reCAPTCHA for all: from n/a through = 2.26...

4.3CVSS0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/19 2:44 p.m.18 views

CVE-2025-48233 WordPress Affiliates Manager Google reCAPTCHA Integration plugin <= 1.0.6 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in affmngr Affiliates Manager Google reCAPTCHA Integration affiliates-manager-google-recaptcha-integration allows Stored XSS.This issue affects Affiliates Manager Google reCAPTCHA Integration: from n/a through = 1.0.6...

7.1CVSS0.0013EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 2:44 p.m.24 views

CVE-2025-48233

CVE-2025-48233 is a CSRF to Stored XSS vulnerability in the WordPress plugin Affiliates Manager Google reCAPTCHA Integration . The advisory states affected versions range from “n/a through 1.0.6” and the underlying issue is Cross-Site Request Forgery that can lead to stored XSS. Connected sources...

7.1CVSS5.9AI score0.0013EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.9 views

PT-2025-21956 · Google · Recaptcha

Name of the Vulnerable Software and Affected Versions: reCAPTCHA for all versions n/a through 2.26 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Cross Site Request Forgery. This means an attacker can trick a user into performing unintended actions on a web...

4.3CVSS4.4AI score0.0014EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.5 views

PT-2025-21947 · Unknown · Affiliates Manager Google Recaptcha Integration

Name of the Vulnerable Software and Affected Versions: Affiliates Manager Google reCAPTCHA Integration versions 1.0.0 through 1.0.6 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS in the Affiliates Manager Google reCAPTCHA Integration...

7.1CVSS6.6AI score0.0013EPSS
Exploits0References3
Rows per page
Query Builder