Platform
wordpress
Component
custom-registration-form-builder-with-submission-manager
Fixed in
6.0.8
CVE-2026-32498 represents an unauthorized access vulnerability discovered within the RegistrationMagic plugin for WordPress. This flaw arises from a missing capability check, enabling unauthenticated users to potentially execute actions they shouldn't be able to. The vulnerability impacts versions of the plugin up to and including 6.0.7.6, and a patch is available in version 6.0.7.7.
Exploit Status
EPSS
0.04% (13% percentile)
CVSS Vector
Update to version 6.0.7.7, or a newer patched version
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2026-32498 is a security vulnerability affecting the RegistrationMagic WordPress plugin. It allows unauthenticated users to perform unauthorized actions due to a missing security check.
You are potentially affected if you are using RegistrationMagic WordPress plugin versions 6.0.7.6 or earlier. It's crucial to check your plugin version and update if necessary.
Update the RegistrationMagic WordPress plugin to version 6.0.7.7 or later. This version includes a fix for the unauthorized access vulnerability.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.