CVE-2026-10530

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 22, 2026

Vendor unknown

Description

The Pie Register WordPress plugin before 3.8.4.10 does not use sufficiently random values when generating its account verification tokens, allowing unauthenticated attackers to predict a valid token and activate an account without access to the associated email inbox.

References

https://wpscan.com/vulnerability/bd3fe1d2-9f21-4b51-9112-2971a25a7e62/