MEDIUM
themelooks
CVE published 2026-07-14
CVE-2026-11802
The FoodBook Lite - Online Food Ordering System plugin for WordPress has a Missing Authorization vulnerability in all versions up to, and including, 1.5.6. This issue allows unauthenticated attackers to create new user accounts with the 'customer' role, potentially leading to unauthorized access to sensitive information. Site administrators should verify and update to a patched version to prevent unauthor [truncated]