A vulnerability identified as critical has been detected in Feehi CMS up to 2.1.1 . Affected by this issue is some unknown functionality of the file /api/users of the component API . This manipulation causes improper access controls. This vulnerability is handled as CVE-2026-13544 . The attack can be initiated remotely. Additionally, an exploit exists. The project was informed of the problem early through an issue report but has not responded yet.