cleantalk
Vulnerabilities and Security Researches

Conditional CAPTCHA, CVE-2026-1369

CVE, Research URL

CVE-2026-1369

Home page URL

Security reports for Conditional CAPTCHA

Application

Conditional CAPTCHA

Published on
Feb 22, 2026
Research Description
The Conditional CAPTCHA WordPress plugin through 4.0.0 does not validate a parameter before redirecting the user to its value, leading to an Open Redirect issue
Affected versions
max 4.0.0.
Status
vulnerable
Previous vulnerability researches
open-flash-chart-core (CVE-2009-4140) , Jun 07, 2024
New vulnerability
Team Manager – WordPress Showcase Team Members (CVE-2025-58222) , Apr 25, 2026
Product Time Countdown for WooCommerce (CVE-2025-57908) , Apr 25, 2026
YITH WooCommerce Wishlist (CVE-2026-4432) , Apr 25, 2026
Email Marketing, Email Automation & Newsletter for WordPress & WooCommerce – Mail Mint (CVE-2025-59570) , Apr 25, 2026
xili-language (CVE-2025-58654) , Apr 25, 2026