Plogger 1.0 RC1 and earlier, when the Lucid theme is used, does not assign new values for certain codes, which makes it easier for remote attackers to bypass the CAPTCHA protection mechanism via a series of form submissions.
References
Link | Resource |
---|---|
https://www.sysdream.com/CVE-2014-2223_CVE-2014-2224 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-12-29T20:00:00
Updated: 2014-12-29T20:57:00
Reserved: 2014-02-26T00:00:00
Link: CVE-2014-2224
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-12-29T20:59:02.507
Modified: 2014-12-30T16:37:58.953
Link: CVE-2014-2224
JSON object: View
Redhat Information
No data.
CWE