19 matches found
EUVD-2023-52778
Malicious code in bioql PyPI...
EUVD-2022-40044
Malicious code in bioql PyPI...
CVE-2023-48745
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha Code allows Functionality Bypass.This issue affects Captcha Code: from n/a through 2.9...
WordPress Captcha Code plugin Access Control Error Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An access control error...
CVE-2023-48745
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha Code allows Functionality Bypass.This issue affects Captcha Code: from n/a through 2.9...
CVE-2023-48745 WordPress Captcha Code plugin <= 2.9 - Captcha Bypass vulnerability
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha Code allows Functionality Bypass.This issue affects Captcha Code: from n/a through 2.9...
CVE-2023-48745 WordPress Captcha Code plugin <= 2.9 - Captcha Bypass vulnerability
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha Code allows Functionality Bypass.This issue affects Captcha Code: from n/a through 2.9...
WordPress plugin Captcha Code 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An access control error...
Captcha Code < 3.0 - Captcha Bypass
Description The Captcha Code plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up to, and including, 2.9. This makes it possible for unauthenticated attackers to bypass the Captcha Verification...
WordPress Captcha Code Plugin <= 2.9 is vulnerable to Bypass Vulnerability
Software Captcha Code Type Plugin Vulnerable versions = 2.9 Fixed in 3.0 OWASP Top 10 A5: Security Misconfiguration Classification Bypass Vulnerability CVE CVE-2023-48745 Patch priority Low CVSS severity Low 5.3 Developer WebFactory Ltd. PSID c2ae3ab19d4d Credits qilin99 Required privilege...
Captcha Bypass on login
Description So if we login incorrectly multiple times, we get captcha. Each captcha has "captchaid" and solve "captchacode" For example: "captchacode":"8awt" "captchaid":"7nToXDrT6SkJ2BJxKG1u" You can use same captcha code and captcha id in login without any problem Captcha is generated with -...
CVE-2022-37411
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
CVE-2022-37411
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
CVE-2022-37411 WordPress Captcha Code plugin <= 2.7 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
CVE-2022-37411
CVE-2022-37411 covers a Cross-Site Request Forgery (CSRF) vulnerability in Vinoj Cardoza’s WordPress Captcha Code plugin, affecting versions ≤ 2.7. The root cause is a missing/incorrect CSRF check when saving plugin settings, which could allow an attacker to trigger unintended admin actions via a...
PT-2022-23981 · Vinoj Cardoza · Captcha Code Plugin
Name of the Vulnerable Software and Affected Versions: Vinoj Cardoza's Captcha Code plugin versions = 2.7 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on the web...
WordPress plugin Captcha Code 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
Captcha Code < 2.8 - Settings Update via CSRF
The plugin does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack...