CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
Percentile
70.8%
Captcha provided by BestWebSoft is a plugin for WordPress. Captcha contains a CAPTCHA authentication bypass vulnerability (CWE-254).
If this vulnerability is exploited, an attacker may be able to successfully login to WordPress and access an administrative interface without authentication.
Update the Software
Update to the latest version according to the information provided by the developer.