Description
The (1) Textimage 4.7.x before 4.7-1.2 and 5.x before 5.x-1.1 module for Drupal and the (2) Captcha 4.7.x before 4.7-1.2 and 5.x before 5.x-1.1 module for Drupal allow remote attackers to bypass the CAPTCHA test via an empty captcha element in $_SESSION.
Remediation
References
Related Vulnerabilities
MySQL CVE-2014-2440 Vulnerability (CVE-2014-2440)
Oracle Database Server CVE-2009-1021 Vulnerability (CVE-2009-1021)
WordPress Plugin Cryptocurrency Widgets For Elementor Security Bypass (1.2.1)
Java Unspesificed Vulnerability (CVE-2018-2972)
WordPress Plugin MathJax-LaTeX Cross-Site Request Forgery (1.1)