CVE-2014-2224

Published: Dec 29, 2014Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Plogger 1.0 RC1 and earlier, when the Lucid theme is used, does not assign new values for certain codes, which makes it easier for remote attackers to bypass the CAPTCHA protection mechanism via a series of form submissions.

Affected (1)

Products: Plogger: Plogger

Plogger

1 product

Plogger

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Plogger Plogger	Up to 1.0

Related CWEs

CWE-254

References (2)

https://www.sysdream.com/CVE-2014-2223_CVE-2014-2224

Source: cve@mitre.org

https://www.sysdream.com/CVE-2014-2223_CVE-2014-2224

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.