CyberRota
← Ana sayfaya dön

CVE-2026-49953

MEDIUM · CVSS 6.5 EPSS %0.36 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-15T20:16:29.260 · Çekilme zamanı: 2026-06-30T12:20:04.378547+00:00

CyberRota Yorumu

Uzaktan istismar edilebilir olabilir.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

Tespit Edilen Sinyaller
exploit

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-49953
Severity
MEDIUM
CVSS
6.5
EPSS
%0.36

Orijinal NVD Açıklaması

Discuz! X5.0 releases 20260320 through 20260610 contains a CAPTCHA bypass vulnerability that allows unauthenticated remote attackers to defeat challenge controls by exploiting limited complexity and predictable character sets in generated CAPTCHA images. Attackers can train a custom optical character recognition model against collected CAPTCHA samples to reliably predict challenge text, bypassing protections on login, registration, and other functionality from automated abuse.