Description
WordPress Plugin Captcha by BestWebSoft is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bypass intended restrictions. WordPress Plugin Captcha by BestWebSoft version 3.8.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.8.8 or latest
References
Related Vulnerabilities
WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.27)
Vulnerable package dependencies [medium]
PHP Resource Management Errors Vulnerability (CVE-2012-0781)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-3011)
XWiki Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2023-26476)