Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

RegistrationMagic WordPress Plugin PHP Object Injection Vulnerability

Vulnerability

Exploited

A PHP Object Injection vulnerability has been identified in the RegistrationMagic - Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress. This vulnerability affects all versions prior to 3.7.9.3 (exclusive) and arises from the deserialization of untrusted input in the is_expired_by_date() function. The flaw allows unauthenticated attackers to inject a PHP object, which can be exploited to fetch a remote file and install it on the vulnerable site.

Impact

Exploitation of this vulnerability allows for PHP Object Injection, which can be leveraged to execute arbitrary code or actions on behalf of the injected object, potentially leading to a full site takeover.

Remediation

Users are advised to update the RegistrationMagic WordPress plugin to version 3.7.9.3 or later.

Added: Oct 18, 2025, 4:21 AM

Updated: Oct 18, 2025, 4:21 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

9.1

remediation

7.7

relevance

0.8

threat

8.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

9.1

remediation

7.7

relevance

0.8

threat

8.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

RegistrationMagic WordPress Plugin PHP Object Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating