A vulnerability identified as critical has been detected in linqi up to 1.4.8.5 . Impacted is an unknown function of the file /api/Comment of the component Comment API . This manipulation causes authorization bypass. This vulnerability appears as CVE-2026-11369 . The attack may be initiated remotely. There is no available exploit.