Description
WordPress Plugin Flexible Captcha is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bypass the captcha with a modified submission at login. WordPress Plugin Flexible Captcha version 4.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.0.1 or latest
References
Related Vulnerabilities
WordPress Plugin dsIDXpress IDX Cross-Site Scripting (2.1.0)
MySQL CVE-2018-2769 Vulnerability (CVE-2018-2769)
Atlassian Confluence Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-22504)
Joomla! Core 3.9.x Cross-Site Scripting (3.9.0 - 3.9.14)
Oracle Database Server CVE-2005-4884 Vulnerability (CVE-2005-4884)