A vulnerability, which was classified as critical , has been found in CKAN up to 2.10.9/2.11.4 . The impacted element is the function datastore_search_sql . Performing a manipulation results in sql injection. This vulnerability is reported as CVE-2026-42031 . The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.