4 matches found
CVE-2024-12601
The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 5.2.63. This is due to unlimited height and width parameters for CAPTCHA images. This makes it possible for unauthenticated attackers to send multiple requests with large value...
CVE-2024-12601
The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 5.2.63. This is due to unlimited height and width parameters for CAPTCHA images. This makes it possible for unauthenticated attackers to send multiple requests with large value...
CVE-2024-12601 Calculated Fields Form <= 5.2.63 - Denial of Service
The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 5.2.63. This is due to unlimited height and width parameters for CAPTCHA images. This makes it possible for unauthenticated attackers to send multiple requests with large value...
CVE-2024-12601
CVE-2024-12601 is a confirmed Denial of Service vulnerability in the WordPress plugin Calculated Fields Form . The issue stems from unlimited height/width CAPTCHA parameters, enabling unauthenticated attackers to send oversized CAPTCHA requests and exhaust server resources. Affected software: Cal...