CWE•Base•Incomplete•6 recent CVEs

CWE-804Guessable CAPTCHA

Description

The product uses a CAPTCHA challenge, but the challenge can be guessed or automatically recognized by a non-human actor.

[object Object]

Common consequences

Access Control,Other→Bypass Protection Mechanism,Other
When authorization, authentication, or another protection mechanism relies on CAPTCHA entities to ensure that only human actors can access certain functionality, then an automated attacker such as a bot may access the restricted functionali

Related CWEs

CWE-863Incorrect Authorization CWE-1390Weak Authentication

Recent CVEs classified under this CWE

CVE-2026-409355.32026-04-21 CVE-2025-701295.32026-03-10 CVE-2026-274115.42026-03-05 CVE-2025-104233.72025-09-15 CVE-2023-69635.32024-02-05 CVE-2022-40365.32022-11-29