A vulnerability was found in themelooks FoodBook Lite Plugin up to 1.5.6 on WordPress. It has been declared as critical. The affected element is the function registration of the component User Registration. Such manipulation leads to missing authorization.

This vulnerability is referenced as CVE-2026-11802. It is possible to launch the attack remotely. No exploit is available.