Description
In dotCMS 3.2.1, attacker can load captcha once, fill it with correct value and then this correct value is ok for forms with captcha check later.
Remediation
References
Related Vulnerabilities
WordPress Plugin Side Menu-add fixed side buttons SQL Injection (3.1.3)
WordPress Plugin CIP4 Folder Download Widget Local File Inclusion (1.10)
WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.7)
WordPress Plugin Fluid Responsive Slideshow Multiple Vulnerabilities (2.2.6)
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-12170)