CVE-2025-70129

If the anti spam-captcha functionality in PluXml versions 5.8.22 and earlier is enabled, a captcha challenge is generated with a format that can be automatically recognized for articles, such that an automated script is able to solve this anti-spam mechanism trivially and publish spam comments. T...

CVE-2025-70129

If the anti spam-captcha functionality in PluXml versions 5.8.22 and earlier is enabled, a captcha challenge is generated with a format that can be automatically recognized for articles, such that an automated script is able to solve this anti-spam mechanism trivially and publish spam comments. T...

CVE-2025-70129

PluXml, versions 5.8.22 and earlier, is affected by CVE-2025-70129 due to an anti-spam CAPTCHA implementation that can be automatically recognized. The captcha challenge format exposes details within article bodies (capcha-letter, capcha-word, capcha-token), enabling automated scripts to construc...

D-Link DIR-605L 安全漏洞

The AUO DIR-605L is the first cloud router from AUO designed for home and small office networks. The AUO DIR-605L suffers from a buffer overflow vulnerability that originates from the insecure use of sprintf when processing user-supplied CAPTCHA data via the FILECODE parameter in /goform/formLogi...

The Collection App has a flawed logic vulnerability

The Library is a digital reading application under the banner of Xiamen Jianpao Library, which is a digital reading platform integrating public welfare network library and one-stop reading service. There are logic flaws in the Library's app that allow attackers to use proxy tools to obtain CAPTCH...