VYPR
High severity7.5NVD Advisory· Published Dec 5, 2022· Updated Jun 17, 2026

CVE-2022-3907

CVE-2022-3907

Description

The Clerk WordPress plugin before 4.0.0 is affected by time-based attacks in the validation function for all API requests due to the usage of comparison operators to verify API keys against the ones stored in the site options.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.