CVE-2026-3551 | rafasashi Custom New User Notification Plugin up to 1.2.0 on WordPress register_setting cross site scripting

A vulnerability, which was classified as problematic, has been found in rafasashi Custom New User Notification Plugin up to 1.2.0 on WordPress. Affected by this issue is the function register_setting. Performing a manipulation results in cross site scripting.

This vulnerability is reported as CVE-2026-3551. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More