Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login 5.2.0.5

  • Severity: medium-risk
  • Status: Fixed
  • Publication: May 12, 2023

The RegistrationMagic plugin for WordPress is vulnerable to a security issue in some versions up to 5.2.0.5. This means that attackers with administrator-level permissions, or higher, could potentially access parts of the system that they should not be able to. This could allow them to change user passwords and take control of super-administrator accounts in multisite setups.

Detected in:

Registration Forms by RegistrationMagic – Custom User Registration for WordPress fixed vulnerable versions:
RegistrationMagic – Custom Registration Forms, User Registration, Payment and User Login fixed vulnerable versions:
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login fixed vulnerable versions: >= * <= 5.2.0.5
RegistrationMagic – Custom User Registration Forms fixed vulnerable versions:
RegistrationMagic – Custom User Registration Forms Plugin fixed vulnerable versions:
RegistrationMagic – Custom User Registration Forms, Payment Forms, and User Login fixed vulnerable versions:
RegistrationMagic – User Registration Plugin with Custom Registration Forms fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.