CVE-2026-8771 | linlinjava litemall up to 1.8.0 Front-end WeChat API WxGoodsController.java list sql injection

May 17, 2026 Yanac

A vulnerability has been found in linlinjava litemall up to 1.8.0 and classified as critical. This impacts the function list of the file litemall-wx-api/src/main/java/org/linlinjava/litemall/wx/web/WxGoodsController.java of the component Front-end WeChat API. Performing a manipulation results in sql injection.

This vulnerability is known as CVE-2026-8771. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More