4 matches found
CVE-2022-2913
The Login No Captcha reCAPTCHA WordPress plugin before 1.7 doesn't check the proper IP address allowing attackers to spoof IP addresses on the allow list and bypass the need for captcha on the login screen...
CVE-2022-2913 Login No Captcha reCAPTCHA < 1.7 - IP Check Bypass
The Login No Captcha reCAPTCHA WordPress plugin before 1.7 doesn't check the proper IP address allowing attackers to spoof IP addresses on the allow list and bypass the need for captcha on the login screen...
CVE-2022-2913 Login No Captcha reCAPTCHA < 1.7 - IP Check Bypass
The Login No Captcha reCAPTCHA WordPress plugin before 1.7 doesn't check the proper IP address allowing attackers to spoof IP addresses on the allow list and bypass the need for captcha on the login screen...
CVE-2022-2913
CVE-2022-2913 affects the Login No Captcha reCAPTCHA WordPress plugin prior to 1.7. Root cause: improper IP check in get_ip_address allows spoofing on the allow list, bypassing the captcha on the login screen. Impact is a login-time bypass (medium risk; CVSS v3.1: 4.3). Remediation: upgrade to ve...