CVE-2024-44821 - ZZCMS Captcha Reuse Logic Vulnerability

2 months ago 30
ARTICLE AD BOX
CVE ID : CVE-2024-44821
Published : Sept. 4, 2024, 4:15 p.m. | 24 minutes ago
Description : ZZCMS 2023 contains a vulnerability in the captcha reuse logic located in /inc/function.php. The checkyzm function does not properly refresh the captcha value after a failed validation attempt. As a result, an attacker can exploit this flaw by repeatedly submitting the same incorrect captcha response, allowing them to capture the correct captcha value through error messages.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article