CVE-2026-1369

Name of the Vulnerable Software and Affected Versions Conditional CAPTCHA WordPress plugin versions through 4.0.0

Description The software does not properly validate a parameter before redirecting a user, which can lead to an Open Redirect issue. The redirect url parameter is susceptible to manipulation, allowing an attacker to redirect users to a malicious website.

Recommendations Versions prior to 4.0.0 should be updated.