WordPress Broken Authentication vulnerabilities (10)