A vulnerability has been found in stiofansisland UsersWP Plugin up to 1.2.63 on WordPress and classified as problematic . Impacted is an unknown function of the component User Registration Handler . The manipulation of the argument user_id leads to authorization bypass. This vulnerability is traded as CVE-2026-12102 . It is possible to initiate the attack remotely. There is no exploit available.