Vulners
Lucene search
CVE-2026-39394
๐๏ธย 08 Apr 2026ย 14:32:31Reported byย GitHub_MTypeย 
ย cve๐ย web.nvd.nist.gov๐ฐ๏ธย 1ย Media mentions๐ย 6ย Views
| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
 | CVE-2026-39394 | 8 Apr 202614:32 | โ | attackerkb |
 | CVE-2026-39394 | 7 Apr 202620:06 | โ | circl |
 | CI4MS ๅฎๅ จๆผๆด | 8 Apr 202600:00 | โ | cnnvd |
 | CVE-2026-39394 CI4MS has an .env CRLF Injection via Unvalidated `host` Parameter in Install Controller | 8 Apr 202614:32 | โ | cvelist |
 | EUVD-2026-20489 | 8 Apr 202619:16 | โ | euvd |
 | CI4MS Vulnerable to .env CRLF Injection via Unvalidated `host` Parameter in Install Controller | 8 Apr 202619:16 | โ | github |
 | CVE-2026-39394 | 8 Apr 202615:16 | โ | nvd |
 | GHSA-VFHX-5459-QHQH CI4MS Vulnerable to .env CRLF Injection via Unvalidated `host` Parameter in Install Controller | 8 Apr 202619:16 | โ | osv |
 | PT-2026-31321 | 8 Apr 202600:00 | โ | ptsecurity |
 | CVE-2026-39394 | 5 Jun 202619:12 | โ | redhatcve |
10
Node
[
{
"vendor": "ci4-cms-erp",
"product": "ci4ms",
"versions": [
{
"version": "< 0.31.4.0",
"status": "affected"
}
]
}
]
Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 10:42Current
6.1Medium risk
Vulners AI Score6.1
CVSS 3.18.1 - 9.8
EPSS0.00516
SSVC