From dfabea77e7c15fde54b904ba0193cd59018c146b Mon Sep 17 00:00:00 2001
From: Goby <50955360+gobysec@users.noreply.github.com>
Date: Wed, 21 Jun 2023 17:44:37 +0800
Subject: [PATCH] Create CVE-2022-4693.md

add CVE-2022-4693
---
 CVE-2022-4693.md | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 CVE-2022-4693.md

diff --git a/CVE-2022-4693.md b/CVE-2022-4693.md
new file mode 100644
index 0000000..8e45f45
--- /dev/null
+++ b/CVE-2022-4693.md
@@ -0,0 +1,12 @@
+## WordPress plugins User Verification Authentication Bypass Vulnerability (CVE-2022-4693)
+
+|   **Vulnerability**  | **WordPress plugins User Verification Authentication Bypass Vulnerability (CVE-2022-4693)**  |
+| :----:   | :-----|
+| **Chinese name**  | WordPress User Verification 插件 user_verification_send_otp 页面认证绕过漏洞（CVE-2022-4693） |
+| **CVSS core**  | 7.5 |
+| **FOFA Query**  (click to view the results directly)| [body="wp-content/plugins/user-verification"](https://en.fofa.info/result?qbase64=Ym9keT0id3AtY29udGVudC9wbHVnaW5zL3VzZXItdmVyaWZpY2F0aW9uIg%3D%3D) |
+| **Number of assets affected**  | 707 |
+| **Description**  | WordPress plugins User Verification is a plugin to protect your website from spam users and block instant access by using spam email addresses. There is an authorization problem vulnerability in WordPress plugins User Verification before version 1.0.94. The vulnerability stems from the fact that login verification can be bypassed. |
+| **Impact** | There is an authorization problem vulnerability in WordPress plugins User Verification before version 1.0.94. The vulnerability stems from the fact that login verification can be bypassed. |
+
+![](https://s3.bmp.ovh/imgs/2023/06/21/5e1c0207e077f467.gif)