I am still getting bombarded by fake registration!
Below is what Website Defender reports as the main issue:
Register Plus plugin for WordPress suffers from Cross-Site Scripting, Insufficient Anti-automation and Full path disclosure vulnerabilities. Vulnerable are versions of Register Plus plugin 3.5.1 and previous versions. Also for Insufficient Anti-automation are vulnerable WordPress 3.0.1 and previous versions.
Please advise if a fix is in the works and when it's expected to be released.