Security Advisory

CVE-2023-45292

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-11 21:51:16

Last updated 2024-08-02 20:21:15

Assigner Go

State PUBLISHED

Description

When using the default implementation of Verify to check a Captcha, verification can be bypassed. For example, if the first parameter is a non-existent id, the second parameter is an empty string, and the third parameter is true, the function will always consider the Captcha to be correct.

← Browse all CVEs View on cve.org ↗