CVE-2026-34570— CI4MS 安全漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2026-34570の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
CI4MS: Account Deletion Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)
ソース: NVD (National Vulnerability Database)
脆弱性説明
CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.0.0, the application fails to immediately revoke active user sessions when an account is deleted. Due to a logic flaw in the backend design, account state changes are enforced only during authentication (login), not for already-established sessions. The system implicitly assumes that authenticated users remain trusted for the lifetime of their session. There is no session expiration or account expiration mechanism in place, causing deleted accounts to retain indefinite access until the user manually logs out. This behavior breaks the intended access control policy and results in persistent unauthorized access. This issue has been patched in version 0.31.0.0.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
访问控制不恰当
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
CI4MS 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
CI4MS是Ci4MS开源的一个博客页面管理工具。 CI4MS 0.31.0.0之前版本存在安全漏洞,该漏洞源于删除账户后未立即撤销活动用户会话,可能导致持久性未授权访问。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| ci4-cms-erp | ci4ms | < 0.31.0.0 | - |
II. CVE-2026-34570の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
Qwen3.6-35B-A3B · 5705 文字数
有料版に含まれるもの:
脆弱性の原理を深く分析
トリガー条件と影響範囲
完全な実行可能POCコード
攻撃チェーンと緩和策の提案
POCパッケージのダウンロード
月間100件以上のAI生成枠
III. CVE-2026-34570のインテリジェンス情報
请登录查看更多情报信息。
Same Patch Batch · ci4-cms-erp · 2026-04-01 · 14 CVEs total
| CVE-2026-34571 | 10.0 CRITICAL | CI4MS: Stored Cross‑Site Scripting (Stored XSS) in Backend User Management Allows Session |
| CVE-2026-34569 | 10.0 CRITICAL | CI4MS: Blogs Categories Full Account Takeover for All-Roles & Privilege-Escalation via Sto |
| CVE-2026-34568 | 9.1 CRITICAL | CI4MS: Blogs Posts Full Account Takeover for All-Roles & Privilege-Escalation via Stored D |
| CVE-2026-34560 | 9.1 CRITICAL | CI4MS: Logs Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS |
| CVE-2026-34559 | 9.1 CRITICAL | CI4MS: Blogs Tags Full Account Takeover for All-Roles & Privilege-Escalation via Stored DO |
| CVE-2026-34567 | 9.1 CRITICAL | CI4MS: Blogs Posts (Categories) Full Account Takeover for All-Roles & Privilege-Escalation |
| CVE-2026-34566 | 9.1 CRITICAL | CI4MS: Pages Management Full Account Takeover for All-Roles & Privilege-Escalation via Sto |
| CVE-2026-34564 | 9.1 CRITICAL | CI4MS: Menu Management (Pages) Full Account Takeover for All-Roles & Privilege-Escalation |
| CVE-2026-34563 | 9.1 CRITICAL | CI4MS: Backup Management Full Account Takeover for All-Roles & Privilege-Escalation via St |
| CVE-2026-34565 | 9.1 CRITICAL | CI4MS: Menu Management (Posts) Full Account Takeover for All-Roles & Privilege-Escalation |
| CVE-2026-34572 | 8.8 HIGH | CI4MS: Account Deactivation Module Full Persistent Unauthorized Access for All‑Roles via I |
| CVE-2026-34562 | 4.7 MEDIUM | CI4MS: System Settings (Company Information) Full Platform Compromise & Full Account Takeo |
| CVE-2026-34561 | 4.7 MEDIUM | CI4MS: System Settings (Social Media Management) Full Platform Compromise & Full Account T |
IV. 関連脆弱性
同じ製品: ci4ms
- CVE-2026-41891
CI4MS: Deactivated User Session Bypass (active=0) - CVE-2026-41890
CI4MS: Arbitrary Database Table Drop via Theme deleteProcess - CVE-2026-41203
ci4ms Theme::upload is vulnerable to Zip Slip leading to RCE - CVE-2026-41202
ci4ms Backup::restore is vulnerable to Zip Slip leading to R - CVE-2026-41201
CI4MS: Backup Management Full Account Takeover for All-Roles
同じベンダー: ci4-cms-erp
- CVE-2026-41891
CI4MS: Deactivated User Session Bypass (active=0) - CVE-2026-41890
CI4MS: Arbitrary Database Table Drop via Theme deleteProcess - CVE-2026-41203
ci4ms Theme::upload is vulnerable to Zip Slip leading to RCE - CVE-2026-41202
ci4ms Backup::restore is vulnerable to Zip Slip leading to R - CVE-2026-41201
CI4MS: Backup Management Full Account Takeover for All-Roles
同じ弱点: CWE-284
- CVE-2026-8233
Dotouch XproUPF access control - CVE-2026-42569
phpvms: /importer authorization bypass causing full database - CVE-2026-42205
Avo: Broken Access Control: Unauthorized Execution of Arbitr - CVE-2026-41487
Langfuse: Improper role-based-access control in Langfuse LLM - CVE-2026-42278
UltraDAG: Smart Account Spending Policy Bypass via Pockets
V. CVE-2026-34570へのコメント
まだコメントはありません