3 matches found
CVE-2022-37411
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
CVE-2022-37411 WordPress Captcha Code plugin <= 2.7 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
CVE-2022-37411
CVE-2022-37411 covers a Cross-Site Request Forgery (CSRF) vulnerability in Vinoj Cardoza’s WordPress Captcha Code plugin, affecting versions ≤ 2.7. The root cause is a missing/incorrect CSRF check when saving plugin settings, which could allow an attacker to trigger unintended admin actions via a...