AI Search

Classic Search

Search Phrase:

Search Type:

Advanced search options

Search in Forums:

Search in date period:

Sort Search Results by:

AI Assistant

Notifications

Clear all

[Closed] Recaptcha bug

Summarize Topic

How-to and Troubleshooting - wpForo 2.0

Last Post by Robert 7 years ago

2 Posts

2 Users

1 Reactions

1,793 Views

RSS

Posts: 23

Mistral

Topic starter

Translate ▼

Mar 14, 2019 12:45 pm

(@mistral)

Eminent Member

Joined: 7 years ago

[#8139]

Hi Guys

I have found a fairly serious issue with the implementation of the recaptcha for the 'registration' process. Login and password reset do not seem to be affected. I don't know about other instances.

https://wpforo.com/community/?wpforo=signup

If you try to register with an existing username and do not check the recaptcha, you will still receive an error that the user already exists and the email is in use.

This defeats the purpose of recaptcha to protect the form, as the ONLY response from the form when the recaptcha is missing, should be that there is a recaptcha error. Currently it would be possible to brute force checking usernames and emails regardless of there being the recaptcha.

I'm hoping this can be fixed without too much effort.

Regards

Mistral

1 Reply

Posts: 10736

Robert

Admin

Translate ▼

Mar 15, 2019 12:55 pm

(@robert)

Support Team

Joined: 2 months ago

Good point. The reCAPTCHA we'll take a look on this.

In case you want to say thank you !)
We'd really appreciate and be thankful if you leave a good review on plugin page. This is the best way to say thank you to this project and support team.

RE: Information on translating wpForo into Italian

I finished translating wpForo into Italian

By Ricsca , 8 hours ago
RE: Search error with browser automatic translation

Did you understand the problem?

By Ricsca , 8 hours ago
RE: AI Bot Reply User Groups

Also, one of the "features" is for the bot to reply wit...

By marsm , 15 hours ago
RE: Quick Shout Out to the Team!

I would like to second this... I've just upgraded and r...

By marsm , 16 hours ago
RE: Cleanup Cron Jobs

Hi @pierre999, It seems you have started indexing on ...

By Robert , 18 hours ago
RE: CVE-2026-5809

Hi @mikesafh, Please ignore that report. JetPack is...

By Robert , 18 hours ago
RE: Is it possible to obtain a license for multiple websites?

Hi @outwild, Please move this topic to the Addons sup...

By Robert , 1 day ago
RE: User is New (under hard spam control) during first [X] posts not working on 3.0

Thank you, team. 3.0.4 fixed this problem, and now the ...

By JasonToth , 1 day ago

19 Forums
14.2 K Topics
71.1 K Posts
31 Online
6,057 Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed