CVE-2026-8772

EUVD-2026-30718
A weakness has been identified in linlinjava litemall up to 1.8.0. Affected is an unknown function of the component Admin Endpoint. Executing a manipulation can lead to sql injection. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks. Multiple endpoints are affected. The vendor was contacted early about this disclosure but did not respond in any way.
Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
VulDBCNA
4.7 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
linlinjavalitemall
1.0
CNA
linlinjavalitemall
1.1
CNA
linlinjavalitemall
1.2
CNA
linlinjavalitemall
1.3
CNA
linlinjavalitemall
1.4
CNA
linlinjavalitemall
1.5
CNA
linlinjavalitemall
1.6
CNA
linlinjavalitemall
1.7
CNA
linlinjavalitemall
1.8.0
CNA
Common Weakness Enumeration
References
https://gist.github.com/A1AAAAAAAAAA1/bc875f5be52b44b2e557c5312e355d47
https://vuldb.com/submit/811468
https://vuldb.com/vuln/364397
https://vuldb.com/vuln/364397/cti