CVE-2026-10530
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
22/06/2026
Last modified:
22/06/2026
Description
The Pie Register WordPress plugin before 3.8.4.10 does not use sufficiently random values when generating its account verification tokens, allowing unauthenticated attackers to predict a valid token and activate an account without access to the associated email inbox.
Impact
Base Score 3.x
5.30
Severity 3.x
MEDIUM



