Log out
Get PRO

Latest

Information leakage vulnerability in Captcha/Honeypot (CF7, Avada, Elementor, Comments, WPForms) – GDPR ready 1.11.3

  • Severity: medium-risk
  • Status: Fixed
  • Publication: October 3, 2023

The Captcha/Honeypot for Contact Form 7 plugin is a tool for WordPress websites. A security vulnerability was recently discovered in versions up to, and including, 1.11.3 of this plugin. This vulnerability makes it easier for unauthenticated attackers to bypass the Captcha Verification, which should protect the website from malicious activity. It is recommended for website owners who are using this plugin to upgrade to the latest version as soon as possible.

Detected in:

Captcha for WordPress fixed vulnerable versions:
Captcha for WordPress (CF7, FluentForm, WPForms, Elementor and many more) fixed vulnerable versions:
Captcha/Honeypot (CF7, Avada, Elementor, Comments, WPForms) – GDPR ready fixed vulnerable versions: >= * <= 1.11.3

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.