CVE-2023-41100 MEDIUM

CVE-2023-41100

Vendor N/A
Product n/a
Published August 23, 2023
Last update October 3, 2024

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AC:L/AV:N/A:L/C:N/I:N/PR:N/S:U/UI:N

What the vulnerability does

01Description

An issue was discovered in the hcaptcha (aka hCaptcha for EXT:form) extension before 2.1.2 for TYPO3. It fails to check that the required captcha field is submitted in the form data. allowing a remote user to bypass the CAPTCHA check.

Key dates

02Disclosure timeline

August 23, 2023 CVE published
October 3, 2024 Record updated