GobyVuls/CVE-2022-4693.md

## WordPress plugins User Verification Authentication Bypass Vulnerability (CVE-2022-4693)

|   **Vulnerability**  | **WordPress plugins User Verification Authentication Bypass Vulnerability (CVE-2022-4693)**  |
| :----:   | :-----|
| **Chinese name**  | WordPress User Verification 插件 user_verification_send_otp 页面认证绕过漏洞（CVE-2022-4693） |
| **CVSS core**  | 7.5 |
| **FOFA Query**  (click to view the results directly)| [body="wp-content/plugins/user-verification"](https://en.fofa.info/result?qbase64=Ym9keT0id3AtY29udGVudC9wbHVnaW5zL3VzZXItdmVyaWZpY2F0aW9uIg%3D%3D) |
| **Number of assets affected**  | 707 |
| **Description**  | WordPress plugins User Verification is a plugin to protect your website from spam users and block instant access by using spam email addresses. There is an authorization problem vulnerability in WordPress plugins User Verification before version 1.0.94. The vulnerability stems from the fact that login verification can be bypassed. |
| **Impact** | There is an authorization problem vulnerability in WordPress plugins User Verification before version 1.0.94. The vulnerability stems from the fact that login verification can be bypassed. |

![](https://s3.bmp.ovh/imgs/2023/06/21/5e1c0207e077f467.gif)