CVE-2026-11480 | Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22 Admin Design Builder Endpoint admin.php settings.value sql injection

A vulnerability has been found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22 and classified as critical. Impacted is an unknown function of the file beike/Admin/Routes/admin.php of the component Admin Design Builder Endpoint. Performing a manipulation of the argument settings.value results in sql injection.

This vulnerability is cataloged as CVE-2026-11480. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-11480 | Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22 Admin Design Builder Endpoint admin.php settings.value sql injection

Post correlati

CVE-2025-35979 | Intel Processor information disclosure (intel-sa-01420)

CVE-2024-23289 | Apple watchOS Lock Screen state issue

CVE-2024-10187 | myCred Plugin up to 2.7.4 on WordPress Shortcode mycred_link cross site scripting

CVE-2024-43797 | advplyr audiobookshelf up to 2.12.x Role-Based Access Control path traversal