CVE-2014-8802

Name of the Vulnerable Software and Affected Versions Pie Register plugin versions prior to 2.0.14

Description The issue allows remote attackers to add a user by uploading a crafted CSV file or activate a user account via a verifyit action due to improper access restriction to certain functions in pie-register.php.

Recommendations For versions prior to 2.0.14, update to version 2.0.14 or later to resolve the issue. As a temporary workaround, consider restricting access to the pie-register.php file until a patch is available. Avoid using the verifyit action in the affected plugin until the issue is resolved.