https://wiredgorilla.com/authentication-bypass-vulnerability-patched-in-user-registration-plugin/