Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Network-exploitable with no auth or user interaction; integrity impact limited to account activation bypass; no confidentiality or availability impact applies.
Primary rating from Vendor (WPScan).
CVSS VectorVendor: WPScan
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Lifecycle Timeline
6DescriptionCVE.org
The Pie Register WordPress plugin before 3.8.4.10 does not use sufficiently random values when generating its account verification tokens, allowing unauthenticated attackers to predict a valid token and activate an account without access to the associated email inbox.
AnalysisAI
Pie Register WordPress plugin versions before 3.8.4.10 generates account verification tokens with insufficient randomness, enabling unauthenticated remote attackers to predict or enumerate valid tokens and activate registered accounts without receiving the associated verification email. This effectively bypasses the email-as-ownership-proof step in the registration flow, allowing account takeover of any pending registration. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | WordPress user registration must be enabled (the WordPress site allows public self-registration via Pie Register). … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The NVD CVSS score of 5.3 (Medium) reflects a network-accessible, no-authentication, no-interaction flaw with limited integrity impact - consistent with the ability to activate arbitrary pending accounts without email access. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker identifies a WordPress site running Pie Register before 3.8.4.10 with open registration enabled, registers a test account to observe the token format and length, then writes a script to enumerate or predict tokens for other pending registrations - leveraging the publicly available WPScan POC - and submits predicted tokens against the activation endpoint to activate accounts without email access. Because SSVC rates the attack as automatable, this can be executed at scale across many target sites. |
| Remediation | Update Pie Register to version 3.8.4.10 or later - this is the vendor-released patch confirmed by WPScan (https://wpscan.com/vulnerability/bd3fe1d2-9f21-4b51-9112-2971a25a7e62/). … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
More in Pie Register
View allThe Registration Forms - User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPres
SQL injection vulnerability in the Pie Register plugin before 3.0.10 for WordPress allows remote attackers to execute ar
The Registration Forms - User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPres
The Pie Register plugin before 2.0.14 for WordPress does not properly restrict access to certain functions in pie-regist
Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for Wor
The Registration Forms WordPress plugin before 3.8.1.3 does not have authorisation and CSRF when deleting users via an i
Unrestricted Upload of File with Dangerous Type vulnerability in Pie Register.8.3.1. Rated critical severity (CVSS 10.0)
The Pie Register - User Registration Forms. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable
The pie-register plugin before 3.1.2 for WordPress has SQL injection, a different issue than CVE-2018-10969. Rated criti
Cross-site scripting (XSS) vulnerability in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for W
The Registration Forms WordPress plugin before 3.8.2.3 does not properly validate the redirection URL when logging in an
Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in the Genetech Solutions Pie-Register plugin before
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-38210
GHSA-7m4f-cfr6-pwp7