NextGuard
UNKNOWNCVE-2026-3571

Pie Register – User Registration, Profiles & Content Restriction <= 3.8.4.8 - Missing Authorization to Unauthenticated Registration Form Status Modification

Platform

wordpress

Component

pie-register

Fixed in

3.8.4.9

View on NVD

The Pie Register – User Registration, Profiles & Content Restriction plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pie_main() function in all versions up to, and including, 3.8.4.8. This makes it possible for unauthenticated attackers to change registration form status.

How to fix

Update to version 3.8.4.9, or a newer patched version

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free