CVE-2024-12034

Name of the Vulnerable Software and Affected Versions Advanced Google reCAPTCHA plugin for WordPress versions up to 1.25

Description The issue arises because the plugin does not utilize a strong unique key when generating an unblock request. This makes it possible for unauthenticated attackers to unblock their IP after being locked out due to too many bad password attempts.

Recommendations For versions up to 1.25, update to a version higher than 1.25 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.