CAPTCHA Bypass Vulnerability in Getwid – Gutenberg Blocks Plugin for WordPress

CAPTCHA Bypass Vulnerability in Getwid – Gutenberg Blocks Plugin for WordPress

CVE-2023-6963 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up to, and including, 2.0.4. This makes it possible for unauthenticated attackers to bypass the Captcha Verification of the Contact Form block by omitting 'g-recaptcha-response' from the 'data' array.

Learn more about our Wordpress Pen Testing.