WordPress User Registration Plugin ≤ 4.1.2 Authentication Bypass (CVE-2025-2594) – Exploit PoC
A vulnerability in the WordPress User Registration & Membership plugin allows attackers to bypass authentication by abusing a vulnerable AJAX endpoint. This article demonstrates a proof-of-concept exploit targeting versions 4.1.2 and earlier.