The plugin unserializes user input via the ur_get_user_extra_fields and user_registration_form_field function, which could allow any authenticated users, such as subscriber to perform PHP Object Injection when a suitable gadget is present on the blog
CPE | Name | Operator | Version |
---|---|---|---|
user-registration | lt | 2.3.3 |