10 matches found
CVE-2026-5411
The WP Captcha PRO the premium version of the Advanced Google reCAPTCHA plugin, both have the same slug plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 5.38. This is due to a capability check in the saveajax function of the licensing module,...
CVE-2026-5411 WP Captcha PRO <= 5.38 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Upload
The WP Captcha PRO the premium version of the Advanced Google reCAPTCHA plugin, both have the same slug plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 5.38. This is due to a capability check in the saveajax function of the licensing module,...
CVE-2026-5415
The CVE-2026-5415 issue affects the WP Captcha PRO plugin for WordPress (
WordPress reCaptcha by BestWebSoft Plugin <= 1.78 - Captcha Bypass vulnerability
Captcha Bypass vulnerability discovered by cod3beat in WordPress Plugin Google Captcha versions = 1.78...
WordPress Captcha Bank Plugin <= 4.0.36 is vulnerable to Cross Site Scripting (XSS)
Software Captcha Bank Type Plugin Vulnerable versions = 4.0.36 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9375 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 514f49188a6e Credits vgo0 Required privileg...
CVE-2023-44236
Cross-Site Request Forgery CSRF vulnerability in Devnath verma WP Captcha plugin = 2.0.0 versions...
WordPress Captcha Them All Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)
Software Captcha Them All Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30786 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID e3bb9708e183 Credits Yuki Haruma Required...
CVE-2022-37411 WordPress Captcha Code plugin <= 2.7 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Vinoj Cardoza's Captcha Code plugin = 2.7 at WordPress...
CVE-2022-2184
The CAPTCHA 4WP WordPress plugin before 7.1.0 lets user input reach a sensitive requireonce call in one of its admin-side templates. This can be abused by attackers, via a Cross-Site Request Forgery attack to run arbitrary code on the server...
WordPress Captcha Plugin Backdoor
A backdoor vulnerability exists in WordPress Captcha plugin. Successful exploitation of this vulnerability allows remote attackers to change the effected site's content...