CWE-804 is a common weakness enumeration in software security. This database tracks 5 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-804?

There are 5 CVE vulnerabilities classified as CWE-804 with an average CVSS score of 5.52.

What is the severity distribution for CWE-804?

CWE-804 contains 0 critical, 1 high, 4 medium, and 0 low severity vulnerabilities.

CWE-804

Total CVEs

Vulnerabilities

Avg CVSS v3

5.5

Medium

Avg CVSS v2

5.0

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 0

High 1

20%

Medium 4

80%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (5)

Page 1 of 1

CVE-2022-1801

HIGH

CVSS:7.5(High)

The Very Simple Contact Form WordPress plugin before 11.6 exposes the solution to the captcha in the rendered contact form, both as hidden input fields and as plain text in the page, making it very ea...

CWE-8042022

CVE-2025-1262

MEDIUM

CVSS:5.3(Medium)

The Advanced Google reCaptcha plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up to, and including, 1.27 . This makes it possible for unauthenticated attackers to bypass the Built-in ...

CWE-8042025

CVE-2024-31295

MEDIUM

CVSS:5.3(Medium)

Guessable CAPTCHA vulnerability in BestWebSoft Captcha by BestWebSoft allows Functionality Bypass.This issue affects Captcha by BestWebSoft: from n/a through 5.2.0.

CWE-8042024

CVE-2024-30540

MEDIUM

CVSS:5.3(Medium)

Guessable CAPTCHA vulnerability in Guido VS Contact Form allows Functionality Bypass.This issue affects VS Contact Form: from n/a through 14.7.

CWE-8042024

CVE-2025-32036

MEDIUM

CVSS:4.2(Medium)

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. The algorithm used to generate the captcha image shows the least complexity of the desired...

CWE-8042025