cvedb.io
CVE-2022-2913
MEDIUM · CVSS 4.3
EPSS exploitation probability: 0%
Published 2022-09-16T09:15:11.310 · Last modified 2026-06-17T04:42:49.100

Summary

The Login No Captcha reCAPTCHA WordPress plugin before 1.7 doesn't check the proper IP address allowing attackers to spoof IP addresses on the allow list and bypass the need for captcha on the login screen.

Affected products

login_no_captcha_recaptcha_project — login_no_captcha_recaptcha

Does this affect you?

Add your gear to cvedb and we'll alert you only when login_no_captcha_recaptcha_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.