SEMCMS is a foreign trade web content management system (CMS) that supports multiple languages. SEMCMS has an access control error vulnerability, which stems from the fact that the checkuser function was found to have a vulnerability that could be exploited by an attacker to obtain passwords in plaintext via SQL queries.