CVE-2008-0351 Information

Description

admin/config.php in Evilsentinel 1.0.9 and earlier allows remote attackers to bypass the CAPTCHA test by omitting the es_security_captcha parameter and not invoking captcha.php.

Reference

http://www.securityfocus.com/bid/27227 https://www.exploit-db.com/exploits/4884