MEDIUM🇬🇧 English

CVE-2023-6963

CVSS 5.3v3.1pub. 2024-02-05upd. 2026-04-08

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up to, and including, 2.0.4. This makes it possible for unauthenticated attackers to bypass the Captcha Verification of the Contact Form block by omitting 'g-recaptcha-response' from the 'data' array.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
  • Motopress Getwid

    APP
    Motopress
    < 2.0.5
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2023-6042HIGH7.5ten sam produkt

Any unauthenticated user may send e-mail from the site with any title or content to the admin

CVE-2023-1895HIGH8.5ten sam produkt

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Server Side Request Forgery via the get_re...

CVE-2024-10872MEDIUM6.4ten sam produkt

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `templ...

CVE-2024-6489MEDIUM5.3ten sam produkt

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a...

CVE-2024-6491MEDIUM4.3ten sam produkt

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a...