Description
WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA version 0.3.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 0.3.3 or latest
References
Related Vulnerabilities
WordPress Plugin PopCash.Net Code Integration Tool Cross-Site Scripting (1.0)
WordPress Plugin Car Rental System Cross-Site Scripting (1.3)
WordPress Plugin Bookmarkify Multiple Vulnerabilities (2.9.2)
WordPress Plugin WooCommerce Stock Manager Cross-Site Request Forgery (2.5.7)
WordPress Plugin WordPress File Upload Multiple Unspecified Vulnerabilities (3.10.0)