The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to reCaptcha Bypass in versions up to, and including, 3.2.1. This is due to insufficient server side checking on the captcha value submitted during a form submission. This makes it possible for unauthenticated attackers to bypass Captcha restrictions and for attackers to utilize bots to submit forms.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2023-03-02T16:01:14.196Z
Updated: 2023-03-02T16:01:14.196Z
Reserved: 2023-01-05T14:15:05.476Z
Link: CVE-2023-0085
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-02T17:15:09.957
Modified: 2023-11-07T03:59:37.287
Link: CVE-2023-0085
JSON object: View
Redhat Information
No data.
CWE
No CWE.