cleantalk
Vulnerabilities and Security Researches

Conditional CAPTCHA, CVE-2026-1369

CVE, Research URL

CVE-2026-1369

Home page URL

Security reports for Conditional CAPTCHA

Application

Conditional CAPTCHA

Published on
Feb 22, 2026
Research Description
The Conditional CAPTCHA WordPress plugin through 4.0.0 does not validate a parameter before redirecting the user to its value, leading to an Open Redirect issue
Affected versions
max 4.0.0.
Status
vulnerable
Previous vulnerability researches
TZ Plus Gallery (CVE-2025-31756) , Apr 03, 2025
TZ Plus Gallery (CVE-2025-57974) , Apr 24, 2026
New vulnerability
YITH WooCommerce Wishlist (CVE-2026-4432) , Apr 25, 2026
Email Marketing, Email Automation & Newsletter for WordPress & WooCommerce – Mail Mint (CVE-2025-59570) , Apr 25, 2026
xili-language (CVE-2025-58654) , Apr 25, 2026
Ultimate WP Mail (CVE-2025-53454) , Apr 25, 2026
WPGraphQL Smart Cache (67bffa5233e71f0f6e6f08ff3569e436ffd493ff) , Apr 25, 2026