A vulnerability, which was classified as critical , has been found in wpeverest User Registration & Membership Plugin up to 5.1.5 on WordPress. Affected by this vulnerability is the function is_admin_creation_process . This manipulation causes missing authorization. This vulnerability is tracked as CVE-2026-6145 . The attack is possible to be carried out remotely. No exploit exists.