Vulnerabilities

CVE-2025-15005 - CouchCMS reCAPTCHA config.example.php hard-coded key

2025-12-22 0 views admin

CVE ID : CVE-2025-15005 Published : Dec. 22, 2025, 1:16 a.m. | 14 minutes ago Description : A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the file couch/config.example.php of the component reCAPTCHA Handler. The manipulation of the argument K_RECAPTCHA_SITE_KEY/K_RECAPTCHA_SECRET_KEY results in use of hard-coded cryptographic key . It is possible to launch the attack remotely. This attack is characterized by high complexity. The exploitability is told to be difficult. The exploit has been released to the public and may be exploited. Severity: 6.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-15005

Severity

HIGH

Published

Dec. 22, 2025

Affected Product: php

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-15005highphp

CVE-2025-15005 - CouchCMS reCAPTCHA config.example.php hard-coded key

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-15003 - SeaCMS admin_video.php sql injection

CVE-2025-15006 - Tenda WH450 HTTP Request CheckTools stack-based overflow

CVE-2025-15004 - DedeCMS freelist_main.php sql injection

CVE-2025-62926 - WordPress TempTool plugin <= 1.3.1 - cross site scripting (xss) vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting