Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/05/07 3:19 a.m.7 views

CVE-2026-41203 ci4ms Theme::upload is vulnerable to Zip Slip leading to RCE

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.5.0, ci4ms Theme::upload extracts user uploaded ZIP archives without validating entry names, allowing an authenticated backend user...

9.4CVSS6.5AI score0.00484EPSS
Exploits0References2
CVE
CVE
added 2026/05/07 3:18 a.m.14 views

CVE-2026-41202

The CVE describes a Zip Slip/quasi-directory-traversal in ci4ms Backup::restore for ci4ms (CodeIgniter 4-based CMS skeleton). Before v0.31.5.0, restoring uploaded ZIP archives does not validate entry names, allowing an authenticated backend user with backup-create permission to write files outsid...

9.4CVSS6.5AI score0.00528EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/07 3:18 a.m.9 views

CVE-2026-41202 ci4ms Backup::restore is vulnerable to Zip Slip leading to RCE

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.5.0, ci4ms Backup::restore extracts user uploaded ZIP archives without validating entry names, allowing an authenticated backend user...

9.4CVSS6.5AI score0.00528EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/07 3:16 a.m.13 views

EUVD-2026-28253

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. In version 0.31.4.0, an attacker can achieve Full Account Takeover & Privilege Escalation via Stored DOM XSS in backup module filename field manipulated vi...

9.1CVSS5.7AI score0.00331EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.11 views

CI4MS 路径遍历漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.31.5.0 contained a path traversal vulnerability. This vulnerability stemmed from Theme::upload, which extracted ZIP archives uploaded by users without verifying the entry names. As a result,...

9.4CVSS6AI score0.00484EPSS
Exploits0References1
Rows per page
Query Builder