The Login No Captcha reCAPTCHA WordPress plugin prior to 1.7 doesn't check the proper IP address allowing malicious users to spoof IP addresses on the allow list and bypass the need for captcha on the login screen.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
login no captcha recaptcha project login no captcha recaptcha |