CVE-2026-7083

Name of the Vulnerable Software and Affected Versions likeadmin-likeshop likeadmin php versions prior to 1.9.7

Description A remote SQL injection exists in the dataTable Admin API component. The issue is located in the queryResult() function within the serverappadminapiliststoolsDataTableLists.php file, allowing for remote manipulation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the queryResult() function in the serverappadminapiliststoolsDataTableLists.php file to minimize the risk of exploitation.