CVE-2026-11462 | Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22 Stripe Plugin StripeController.php callback Request improper authorization

Inserito da Angelo Barbosa | Giu 7, 2026 | CVE

A vulnerability classified as critical has been found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the component Stripe Plugin. Performing a manipulation of the argument Request results in improper authorization.

This vulnerability is identified as CVE-2026-11462. The attack can be initiated remotely. Additionally, an exploit exists.

It is suggested to install a patch to address this issue.

CVE-2026-11462 | Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22 Stripe Plugin StripeController.php callback Request improper authorization

Post correlati

CVE-2024-34987 | PHPGurukul Online Fire Reporting System 1.2 ofrs/admin/index.php username sql injection

CVE-2024-51584 | Anas Edreesi Marquee Elementor with Posts Plugin up to 1.2.0 on WordPress cross site scripting

CVE-2023-51750 | ScaleFusion 10.5.2 File Download Privilege Escalation

CVE-2025-12904 | otacke SNORDIAN’s H5PxAPIkatchu Plugin up to 0.4.17 on WordPress AJAX Endpoint insert_data cross site scripting