CVE-2022-4693

Name of the Vulnerable Software and Affected Versions User Verification WordPress plugin versions prior to 1.0.94

Description The issue allows for an authentication bypass, requiring only the knowledge of a user's username to exploit. Since usernames are often publicly available, an attacker may gain administrative access to a website by exploiting this issue.

Recommendations For versions prior to 1.0.94, update to version 1.0.94 or later to resolve the authentication bypass issue. As a temporary workaround, consider restricting access to sensitive areas of the website that rely on user authentication until the update can be applied.