Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2026-34572— CI4MS: Account Deactivation Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)

CVSS 8.8 · High EPSS 0.10% · P27
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-34572

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
CI4MS: Account Deactivation Module Full Persistent Unauthorized Access for All‑Roles via Improper Session Invalidation (Logic Flaw)
Source: NVD (National Vulnerability Database)
Vulnerability Description
CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.0.0, the application fails to immediately revoke active user sessions when an account is deactivated. Due to a logic flaw in the backend design, account state changes are enforced only during authentication (login), not for already-established sessions. The system implicitly assumes that authenticated users remain trusted for the lifetime of their session. There is no session expiration or account expiration mechanism in place, causing deactivated accounts to retain indefinite access until the user manually logs out. This behavior breaks the intended access control policy and results in persistent unauthorized access, representing a critical security flaw. This issue has been patched in version 0.31.0.0.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
访问控制不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
CI4MS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CI4MS是Ci4MS开源的一个博客页面管理工具。 CI4MS 0.31.0.0之前版本存在安全漏洞,该漏洞源于账户停用后未立即撤销活动用户会话,可能导致持久性未授权访问。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
ci4-cms-erpci4ms < 0.31.0.0 -

II. Public POCs for CVE-2026-34572

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium
Qwen3.6-35B-A3B · 10393 chars
Paid plan includes:
In-depth vulnerability mechanism
Trigger conditions & impact
Full executable POC code
Exploit chain & mitigation
POC zip download
100+ AI POC generations per month

III. Intelligence Information for CVE-2026-34572

登录查看更多情报信息。

Same Patch Batch · ci4-cms-erp · 2026-04-01 · 14 CVEs total

CVE-2026-3457110.0 CRITICALCI4MS: Stored Cross‑Site Scripting (Stored XSS) in Backend User Management Allows Session
CVE-2026-3456910.0 CRITICALCI4MS: Blogs Categories Full Account Takeover for All-Roles & Privilege-Escalation via Sto
CVE-2026-345689.1 CRITICALCI4MS: Blogs Posts Full Account Takeover for All-Roles & Privilege-Escalation via Stored D
CVE-2026-345609.1 CRITICALCI4MS: Logs Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS
CVE-2026-345599.1 CRITICALCI4MS: Blogs Tags Full Account Takeover for All-Roles & Privilege-Escalation via Stored DO
CVE-2026-345679.1 CRITICALCI4MS: Blogs Posts (Categories) Full Account Takeover for All-Roles & Privilege-Escalation
CVE-2026-345669.1 CRITICALCI4MS: Pages Management Full Account Takeover for All-Roles & Privilege-Escalation via Sto
CVE-2026-345649.1 CRITICALCI4MS: Menu Management (Pages) Full Account Takeover for All-Roles & Privilege-Escalation
CVE-2026-345639.1 CRITICALCI4MS: Backup Management Full Account Takeover for All-Roles & Privilege-Escalation via St
CVE-2026-345659.1 CRITICALCI4MS: Menu Management (Posts) Full Account Takeover for All-Roles & Privilege-Escalation
CVE-2026-345708.8 HIGHCI4MS: Account Deletion Module Full Persistent Unauthorized Access for All‑Roles via Impro
CVE-2026-345624.7 MEDIUMCI4MS: System Settings (Company Information) Full Platform Compromise & Full Account Takeo
CVE-2026-345614.7 MEDIUMCI4MS: System Settings (Social Media Management) Full Platform Compromise & Full Account T

IV. Related Vulnerabilities

Same product: ci4ms
Same vendor: ci4-cms-erp
Same weakness: CWE-284

V. Comments for CVE-2026-34572

No comments yet

Leave a comment