WordPress Plugin WP Limit Login Attempts Security Bypass (2.6.4)
Description
WordPress Plugin WP Limit Login Attempts is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bypass the IP-based restrictions on login forms. WordPress Plugin WP Limit Login Attempts version 2.6.4 is vulnerable; prior versions may also be affected.
Remediation
Disable and remove the plugin until a fix is available