• WordPress Plugin PS PHPCaptcha WP is prone to a Denial of Service vulnerability. Exploiting this issue may allow an attacker to prevent the creation of CAPTCHA, thus denying service to legitimate users. WordPress Plugin PS PHPCaptcha WP version 1.1.0 is vulnerable; prior versions may also be affected.

• Update to plugin version 1.2.0 or latest

• • https://metamorfosec.com/Files/Advisories/METS-2019-003-Denial_of_Service_in_PS_PHPCaptcha_WP_before_v1.2.0.txt
  • https://plugins.svn.wordpress.org/ps-phpcaptcha/trunk/README.txt

• 

• CVE-2019-7412

• CWE-400

• Missing Update Denial Of Service

• WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.16)
• WordPress Plugin Responsive Cookie Consent Cross-Site Scripting (1.7)
• WordPress Plugin Popup Maker-Popup Forms, Optins & More Cross-Site Scripting (1.6.4)
• WordPress Plugin MailPoet 2 Unspecified Vulnerability (2.7.8)
• WordPress Plugin Shortcode Factory Local File Inclusion (2.7)