CVE-2014-9283

The BestWebSoft Captcha plugin before 4.0.7 for WordPress allows remote attackers to bypass the CAPTCHA protection mechanism and obtain administrative access via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
jpcertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
VendorProductVersion
bestwebsoftcaptcha
𝑥
≤ 4.0.6
𝑥
= Vulnerable software versions
References
http://jvn.jp/en/jp/JVN93727681/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000029
https://wordpress.org/plugins/captcha/changelog/
http://jvn.jp/en/jp/JVN93727681/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000029
https://wordpress.org/plugins/captcha/changelog/