CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

59 matches found

Positive Technologies•added 2026/06/15 12:0 a.m.•9 views

PT-2026-49308

Discuz! X5.0 releases 20260320 through 20260501 contains a CAPTCHA bypass vulnerability that allows unauthenticated remote attackers to defeat challenge controls by exploiting limited complexity and predictable character sets in generated CAPTCHA images. Attackers can train a custom optical...

6.9CVSS5.3AI score0.00359EPSS

Exploits0References4

RedhatCVE•added 2026/06/05 7:27 p.m.•8 views

CVE-2026-40935

WWBN AVideo is an open source video platform. In versions 29.0 and prior, objects/getCaptcha.php accepts the CAPTCHA length ql directly from the query string with no clamping or sanitization, letting any unauthenticated client force the server to generate a 1-character CAPTCHA word. Combined with...

5.3CVSS5.5AI score0.00218EPSS

Exploits1References1

CNNVD•added 2026/04/21 12:0 a.m.•8 views

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 29.0 contained security vulnerabilities. These vulnerabilities stemmed from the objects/getCaptcha.php file, which directly accepts the CAPTCHA length from the query string...

5.3CVSS5.8AI score0.00218EPSS

Exploits1References1

GithubExploit•added 2026/04/16 1:9 p.m.•85 views

cap-exploit-poc

cap-exploit-poc This repository contai...

5.8AI score

Exploits0

Snyk•added 2026/04/14 11:13 p.m.•7 views

Guessable CAPTCHA

Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Guessable CAPTCHA through the getCaptcha.php process, which allows external control over the CAPTCHA length parameter without proper validation. An attacker can...

6.9CVSS5.8AI score

Exploits0References2

EUVD•added 2026/03/05 6:30 a.m.•5 views

EUVD-2026-9645

Guessable CAPTCHA vulnerability in jp-secure SiteGuard WP Plugin siteguard allows Functionality Bypass.This issue affects SiteGuard WP Plugin: from n/a through = 1.7.9...

5.9AI score0.00187EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 12:11 p.m.•4 views

CVE-2018-18531

text/impl/DefaultTextCreator.java, text/impl/ChineseTextProducer.java, and text/impl/FiveLetterFirstNameTextCreator.java in kaptcha 2.3.2 use the Random rather than SecureRandom function for generating CAPTCHA values, which makes it easier for remote attackers to bypass intended access restrictio...

9.8CVSS7AI score0.01468EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:27 a.m.•5 views

CVE-2023-45009

Improper Restriction of Excessive Authentication Attempts vulnerability in Forge12 Interactive GmbH Captcha/Honeypot for Contact Form 7 allows Functionality Bypass.This issue affects Captcha/Honeypot for Contact Form 7: from n/a through 1.11.3...

5.3CVSS6.9AI score0.00403EPSS

Exploits0References1

EUVD•added 2025/10/22 3:31 p.m.•3 views

EUVD-2025-35556

Server-Side Request Forgery SSRF vulnerability in captcha.eu Captcha.eu captcha-eu allows Server Side Request Forgery.This issue affects Captcha.eu: from n/a through = 1.0.61...

5.3CVSS6.5AI score0.00195EPSS

Exploits0References2

NVD•added 2025/10/22 3:15 p.m.•4 views

CVE-2025-49374

Server-Side Request Forgery SSRF vulnerability in captcha.eu Captcha.eu captcha-eu allows Server Side Request Forgery.This issue affects Captcha.eu: from n/a through = 1.0.61...

5.4CVSS0.00195EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-18030

Malware in sbrugna...

7.5CVSS7.6AI score0.01192EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2014-9436

Malware in sbrugna...

7.5CVSS7.5AI score0.03002EPSS

Exploits0References7