MoBiC-13: CAPTCHA bypass

22:46 13.11.2007

Next participant of the project is captcha at Which is using in comment form at every news page of the site.

This is text logical captcha and it is vulnerable for MustLive CAPTCHA bypass method. There are many text captchas (I’ll write about some others text ones) and in this case it’s text logical, because it’s textual with logical task for the user like in logical ones (in this case it’s math task). This Insufficient Anti-automation hole I found 19.10.2007.

For bypassing captcha you need to use the same answer and cupnum values many times (for every post). This is classic MustLive CAPTCHA bypass method, which easily bypass text logical captchas.

Insufficient Anti-automation: CAPTCHA bypass.html

Guys not overdo with this Captcha bypass test. Not post too much at this site. This exploit for educational purposes only.

Moral: never make such unreliable captchas.

Leave a Reply

You must be logged in to post a comment.