Description
WordPress Plugin Captcha by BestWebSoft is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bypass intended restrictions. WordPress Plugin Captcha by BestWebSoft version 3.8.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.8.8 or latest
References
Related Vulnerabilities
WordPress Plugin Helpful Security Bypass (4.5.14)
WordPress Plugin Simple Ads Manager Denial of Service (2.9.3.114)
WordPress Plugin Data Tables Generator by Supsystic Cross-Site Scripting (1.10.19)
WordPress 4.5.x PHP Object Injection (4.5 - 4.5.23)
WordPress Plugin TinyMCE Custom Styles Cross-Site Scripting (1.1.2)