Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in reCAPTCHA and Cloudflare Turnstile For All Pages, to Block Spam and Hackers Attack, Block Visitors from China 1.22

  • Severity: medium-risk
  • Status: Fixed
  • Publication: May 15, 2023

The reCAPTCHA for all plugin for WordPress, up to version 1.22, is vulnerable to unauthorized changes in plugin settings. This means that people who have been given access to the WordPress site and have a subscriber-level access or higher can change the plugin settings without permission.

Detected in:

Cloudflare Turnstile or reCAPTCHA For All Pages, to Block Spam and Hackers Attack, Block Visitors from China fixed vulnerable versions:
Cloudflare Turnstile or reCAPTCHA For any Pages, to Block Spam and Hackers Attack. fixed vulnerable versions:
Integrator for Turnstile and reCAPTCHA. fixed vulnerable versions:
reCAPTCHA and Cloudflare Turnstile For All Pages, to Block Spam and Hackers Attack, Block Visitors from China fixed vulnerable versions: >= * <= 1.22
Turnstile or reCAPTCHA For All Pages, to Block Spam and Hackers Attack. fixed vulnerable versions:
Turnstile or reCAPTCHA For any Pages, to Block Spam and Hackers Attack. fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.