The Frontend Admin plugin for WordPress, created by DynamiApps, has a security vulnerability in all versions up to 3.19.4. This vulnerability allows attackers to manipulate the user processing forms without proper encryption. This could lead to adding or editing administrator accounts for gaining higher privileges, bypassing authentication by automatically logging in users, or injecting harmful scripts through the post processing form. This vulnerability can only be exploited if the ‘openssl’ php extension is not loaded on the server.