A vulnerability was found in Ctrlpanel-gg panel up to 1.1.x . It has been rated as problematic . This affects the function update of the component Admin Settings Update Endpoint . This manipulation of the argument settings_class causes use of externally-controlled input to select classes or code. This vulnerability is registered as CVE-2026-34216 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.