Unrated severityNVD Advisory· Published Jun 22, 2026

Pie Register < 3.8.4.10 - Unauthenticated Email Verification Bypass via Predictable Token

CVE-2026-10530

Description

The Pie Register WordPress plugin before 3.8.4.10 does not use sufficiently random values when generating its account verification tokens, allowing unauthenticated attackers to predict a valid token and activate an account without access to the associated email inbox.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

WordPress/Pie Registerllm-fuzzy
Range: < 3.8.4.10
Package: https://wordpress.org/plugins/pie-register

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/bd3fe1d2-9f21-4b51-9112-2971a25a7e62/mitreexploitvdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000