Description
The (1) Textimage 4.7.x before 4.7-1.2 and 5.x before 5.x-1.1 module for Drupal and the (2) Captcha 4.7.x before 4.7-1.2 and 5.x before 5.x-1.1 module for Drupal allow remote attackers to bypass the CAPTCHA test via an empty captcha element in $_SESSION.
Remediation
References
Related Vulnerabilities
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-41892)
MySQL CVE-2013-3793 Vulnerability (CVE-2013-3793)
MySQL CVE-2024-20961 Vulnerability (CVE-2024-20961)
WordPress Plugin Delete All Comments Cross-Site Request Forgery (1.0)
TYPO3 Use of Insufficiently Random Values Vulnerability (CVE-2010-3666)