CVE-2025-2220 | Odyssey CMS up to 10.34 reCAPTCHA odyssey_contact_form.php g-recaptcha-response key management
A vulnerability was found in Odyssey CMS up to 10.34. It has been classified as problematic. Affected is an unknown function of the file /modules/odyssey_contact_form/odyssey_contact_form.php of the component reCAPTCHA Handler. The manipulation of the argument g-recaptcha-response leads to key management error.
This vulnerability is traded as CVE-2025-2220. Local access is required to approach this attack. Furthermore, there is an exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.