VulnTitan VulnTitan Security command center
Plugin Vulnerability Hub
Plugin 3 known issues Latest disclosed Nov 28, 2023

WP Forms Puzzle Captcha Vulnerabilities

Review known vulnerability records for the WordPress plugin WP Forms Puzzle Captcha (`wp-forms-puzzle-captcha`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2023-48278, CVE-2023-48276 and CVE-2023-44997, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed
Known Records
3
High or Critical
0
Patch Coverage
100%
Last Updated
Jan 22, 2024
Priority CVE Quick Links

Fast paths into WP Forms Puzzle Captcha CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs
3
CVE-2023-48278 Medium No patch listed
CVE-2023-48278 WP Forms Puzzle Captcha Stored Cross-Site Scripting

WP Forms Puzzle Captcha <= 4.1 - Cross-Site Request Forgery to Cross-Site Scripting

CVE-2023-44997 Medium No patch listed
CVE-2023-44997 WP Forms Puzzle Captcha Cross-Site Request Forgery

WP Forms Puzzle Captcha <= 4.1 - Cross-Site Request Forgery

CVE-2023-48276 Medium No patch listed
CVE-2023-48276 WP Forms Puzzle Captcha Vulnerability

WP Forms Puzzle Captcha <= 4.1 - Captcha Bypass

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for WP Forms Puzzle Captcha so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility
3 records include a published patch path, leaving 0 with no listed safe release yet.
Severity Mix
0 critical and 0 high severity findings.
Recent CVEs
CVE-2023-48278, CVE-2023-48276 and CVE-2023-44997
Reference Workflow
Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.
Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

Known Vulnerabilities

Reports for WP Forms Puzzle Captcha

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: No CVE-2023-48278
CVE-2023-48278: WP Forms Puzzle Captcha <= 4.1 - Cross-Site Request Forgery to Cross-Site Scripting

The WP Forms Puzzle Captcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.1. This is due to missing or incorrect nonce validation on one of its functions. This makes it possible for unauthenticated attackers to invoke this fu...

Published
Nov 28, 2023
Patched Release
Not published
Affected Versions
Versions up to 4.1
Next Step
Open the full report for remediation notes and references.
Open CVE-2023-48278 Report Open CVE Reference
Plugin Medium Patched: No CVE-2023-48276
CVE-2023-48276: WP Forms Puzzle Captcha <= 4.1 - Captcha Bypass

The WP Forms Puzzle Captcha plugin for WordPress is vulnerable to Captcha Bypass in versions up to, and including, 2.8. This makes it possible for unauthenticated attackers to bypass the Captcha Verification.

Published
Nov 28, 2023
Patched Release
Not published
Affected Versions
Versions up to 4.1
Next Step
Open the full report for remediation notes and references.
Open CVE-2023-48276 Report Open CVE Reference
Plugin Medium Patched: No CVE-2023-44997
CVE-2023-44997: WP Forms Puzzle Captcha <= 4.1 - Cross-Site Request Forgery

The WP Forms Puzzle Captcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.1. This is due to missing or incorrect nonce validation on one of its functions. This makes it possible for unauthenticated attackers to invoke this fu...

Published
Oct 03, 2023
Patched Release
Not published
Affected Versions
Versions up to 4.1
Next Step
Open the full report for remediation notes and references.
Open CVE-2023-44997 Report Open CVE Reference