CVE-2026-11480
Deferred Deferred - Pending Action
SQL Injection in BeikeShop Admin Design Builder

Publication date: 2026-06-08

Last updated on: 2026-06-08

Assigner: VulDB

Description
A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. Impacted is an unknown function of the file beike/Admin/Routes/admin.php of the component Admin Design Builder Endpoint. Performing a manipulation of the argument settings.value results in sql injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used. The patch is named 2fa9805411088069fcc3b0c15b2f1f33d6e09958. To fix this issue, it is recommended to deploy a patch.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-08
Last Modified
2026-06-08
Generated
2026-06-08
AI Q&A
2026-06-08
EPSS Evaluated
N/A
NVD
CVE-2026-11480
EUVD
EUVD-2026-35011
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
chengdu_everbrite_network_technology beikeshop to 1.6.0.22 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-89 The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
CWE-74 The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-11480 is a second-order SQL injection vulnerability found in the BeikeShop e-commerce platform, specifically in the Admin Design Builder Endpoint. It occurs when a low-privileged backend user with the design_update permission manipulates the argument settings.value, allowing malicious SQL code to be stored in the database. This payload is later executed when the frontend homepage is accessed, leading to SQL injection effects.

The vulnerability affects brand and product module paths where user-controlled IDs are concatenated directly into dynamic SQL queries without proper sanitization.

The issue was fixed by sanitizing input IDs to ensure they are valid positive integers before being used in SQL queries, preventing malicious input from being executed.

Impact Analysis

This vulnerability allows an attacker with low-level backend access to inject and execute arbitrary SQL commands on the database remotely. This can lead to unauthorized data access, data manipulation, or denial of service through SQL injection.

Because the attack requires only a backend login with design_update permission, it increases the risk from insider threats or compromised low-privileged accounts.

Exploitation can cause delays or other harmful effects on the application, potentially impacting the availability and integrity of the system.

Detection Guidance

This vulnerability can be detected by monitoring for unusual or unauthorized use of the backend design update features, specifically the `PUT /admin/design/builder` endpoint, which is used to store malicious SQL payloads.

Detection can also involve checking for abnormal delays or errors when accessing the frontend homepage, as the injected SQL payload may cause time delays or other SQL injection effects.

To detect exploitation attempts, you can search your web server logs for suspicious requests to the `/admin/design/builder` endpoint, especially those containing unusual or unexpected payloads.

  • Use grep or similar tools to find suspicious PUT requests: `grep 'PUT /admin/design/builder' /var/log/nginx/access.log`
  • Monitor database query logs for unusual or malformed queries involving brand or product module IDs.
  • Check for backend user accounts with `design_update` permission and review their recent activities.
Mitigation Strategies

The primary mitigation step is to apply the official patch identified by commit 2fa9805411088069fcc3b0c15b2f1f33d6e09958, which sanitizes input IDs to prevent SQL injection.

Restrict backend user permissions to limit who can perform design updates, ensuring only trusted users have the `design_update` permission.

Monitor and audit backend activities related to the design builder endpoint to detect and prevent unauthorized changes.

If patching immediately is not possible, consider temporarily disabling or restricting access to the `/admin/design/builder` endpoint to prevent exploitation.

Compliance Impact

The provided information does not specify any direct impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-11480. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart