cleantalk
Vulnerabilities and Security Researches

Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Conten, CVE-2026-10530

CVE, Research URL

CVE-2026-10530

Home page URL

Security reports for Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Conten

Application

Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Conten

Published on
Jun 22, 2026
Research Description
The Pie Register WordPress plugin before 3.8.4.10 does not use sufficiently random values when generating its account verification tokens, allowing unauthenticated attackers to predict a valid token and activate an account without access to the associated email inbox.
Affected versions
max 3.8.4.10.
Status
vulnerable
Previous vulnerability researches
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-24573) , Jan 26, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2026-3297) , Jun 13, 2026
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2026-2470) , Jun 13, 2026
Page Builder: Pagelayer – Drag and Drop website builder (034ff0255a06b02d7a3099c8b62052121c06a6b8) , Jun 16, 2026
Page Builder: Pagelayer – Drag and Drop website builder (798fe899223d5728f117e7d01b13ea4115a359b9) , Jun 16, 2026
New vulnerability
ProfileGrid – User Profiles, Memberships, Groups and Communities (CVE-2026-4610) , Jun 24, 2026
Paymob for WooCommerce (CVE-2026-56025) , Jun 24, 2026
Motors – Car Dealer, Classifieds & Listing (CVE-2026-7859) , Jun 24, 2026
Vitepos – Point of sale (POS) plugin for WooCommerce (CVE-2026-8157) , Jun 24, 2026
Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Conten (CVE-2026-10530) , Jun 24, 2026