Description
In dotCMS 3.2.1, attacker can load captcha once, fill it with correct value and then this correct value is ok for forms with captcha check later.
Remediation
References
Related Vulnerabilities
WordPress Plugin Font Awesome Information Disclosure (4.0.0-rc16)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0213)
OpenSSL Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-0778)
WordPress Plugin Tutor LMS Elementor Addons Cross-Site Scripting (2.1.3)