CVE-2024-9375
CVE-2024-9375 concerns the WordPress Captcha Plugin by Captcha Bank. Multiple connected sources confirm a reflected cross-site scripting (XSS) vulnerability caused by improper escaping of URLs when using add_query_arg, affecting all versions up to and including 4.0.36. The issue allows unauthenti...