Lana Codes discovered and reported this Bypass Vulnerability vulnerability in WordPress WP OAuth Server Plugin. A bypass vulnerability could allow a malicious actor to bypass certain restrictions in the code. This vulnerability has been fixed in version 4.0.1.