[wp-trac] [WordPress Trac] #26760: Allow corect CAPTCHA behavior at login

WordPress Trac noreply at wordpress.org
Thu Jan 2 21:17:42 UTC 2014


#26760: Allow corect CAPTCHA behavior at login
-----------------------------+-----------------------------
 Reporter:  crysman          |      Owner:
     Type:  feature request  |     Status:  new
 Priority:  normal           |  Milestone:  Awaiting Review
Component:  Security         |    Version:
 Severity:  normal           |   Keywords:
-----------------------------+-----------------------------
 According to the WP BSW CAPTCHA plugin developers (see
 [http://wordpress.org/support/topic/captcha-is-inefficient-form-tries-to-
 login-first-then-checks-captcha-value?replies=11#post-4969226 here]), it
 is impossible now to check CAPTCHA input BEFORE entering the rest of the
 fields at the WP admin login screen.

 This leads to the '''security vulnerability and lowers significantly the
 benefit of using any CAPTCHA'''.

 Here are [http://wordpress.org/support/topic/captcha-is-inefficient-form-
 tries-to-login-first-then-checks-captcha-value?replies=11#post-4947002 the
 details] - there is also a short explaining video in the comment just
 below this one.

--
Ticket URL: <http://core.trac.wordpress.org/ticket/26760>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list