PT-2026-51275 · WordPress · Pie Register

Haitam Lazaar

·

Published

2026-06-22

·

Updated

2026-06-22

·

CVE-2026-10530

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Pie Register versions prior to 3.8.4.10
Description The plugin fails to use sufficiently random values when generating account verification tokens. This allows unauthenticated attackers to predict a valid token and activate an account without having access to the associated email inbox.
Recommendations Update to version 3.8.4.10 or later.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2026-10530

Affected Products

Pie Register