MoBiC-17: uaxxi.com CAPTCHA bypass

22:41 17.11.2007

Next participant of the project is captcha at uaxxi.com. It’s IT and security site and it needs more reliable protection.

This captcha is using at registration page and it’s vulnerable for MustLive CAPTCHA bypass method. This Insufficient Anti-automation hole I found 14.10.2007.

For bypassing captcha you need to use the same picid and piccode values many times (for every post). This is classic MustLive CAPTCHA bypass method.

Insufficient Anti-automation:

uaxxi.com CAPTCHA bypass.html

Guys not overdo with this Captcha bypass test. This exploit for educational purposes only.

Moral: never make such insecure captchas.


Leave a Reply

You must be logged in to post a comment.