2 matches found
CVE-2021-29047
The SimpleCaptcha implementation in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.3 before fix pack 1 does not invalidate CAPTCHA answers after it is used, which allows remote attackers to repeatedly perform actions protected by a CAPTCHA challenge by reusing the same CAPTCHA answer...
CVE-2021-29047
The CVE-2021-29047 issue affects Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.3 before fix pack 1, where SimpleCaptcha does not invalidate CAPTCHA answers after use. This allows remote attackers to reuse a previously solved CAPTCHA to perform actions protected by CAPTCHA, effectively bypassing t...