Description
WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete arbitrary users (along with their posts). WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction version 3.8.1.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.8.1.3 or latest
References
https://sploitus.com/exploit?id=WPEX-ID:A087FB45-6F6C-40AC-B48B-2CBCEDA86CBE
https://plugins.svn.wordpress.org/pie-register/trunk/readme.txt