CVE-2018-15876
The CVE-2018-15876 issue affects the WordPress plugin ajax-bootmodal-login (version 1.4.3). The register, login, and password-recovery forms require solving a CAPTCHA, but the CAPTCHA is enforced only once per user session, enabling automated requests to be sent repeatedly and potentially brute-f...