Critical WordPress Plugin Bug Allows Admin Logins Without Password

By GIXnews

A critical authentication bypass vulnerability allows anyone to log in as an administrator user on WordPress sites running an affected version of the InfiniteWP Client because of logical mistakes in the code. […]

Source:: BleepingComputer