Zero Day MonitorZDM

← Back to list

10.0

CVE-2026-34569PATCHED

ci4-cms-erp · ci4ms

CI4MS: Blogs Categories Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

Description

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to version 0.31.0.0, the application fails to properly sanitize user-controlled input when creating or editing blog categories. An attacker can inject a malicious JavaScript payload into the category title field, which is then stored server-side. This stored payload is later rendered unsafely across public-facing blog category pages, administrative interfaces, and blog post views without proper output encoding, leading to stored cross-site scripting (XSS). This issue has been patched in version 0.31.0.0.

Affected Products

Vendor	Product	Versions
ci4-cms-erp	ci4ms	composer/ci4-cms-erp/ci4ms: <= 0.28.6.0, 0.28.5.0

References

https://github.com/ci4-cms-erp/ci4ms/security/advisories/GHSA-fhrf-q333-82fm(x_refsource_CONFIRM)
https://github.com/ci4-cms-erp/ci4ms/releases/tag/0.31.0.0(x_refsource_MISC)

Related News (1 articles)

Tier C

VulDB4d ago

CVE-2026-34569 | ci4-cms-erp ci4ms 0.28.5.0 category title cross site scripting (GHSA-fhrf-q333-82fm)

→ No new info (linked only)

CVSS 3.110.0 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited❌ No

Patch available

ci4-cms-erp/ci4ms@0.31.0.0

CWECWE-79

PublishedApr 1, 2026

Last enriched4d agov2

Trending Score14

Source articles1

Independent1

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-35035

CI4MS Company Information Public-Facing Page Full Platform Compromise & Full Account Takeover for All Roles & Privilege-Escalation via System Settings Company Information Stored DOM XSS

CRITICALCVE-2026-34566

CI4MS: Pages Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

MEDIUMCVE-2026-34562

CI4MS: System Settings (Company Information) Full Platform Compromise & Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

CRITICALCVE-2026-34565

CI4MS: Menu Management (Posts) Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

MEDIUMCVE-2026-27599

CI4MS: System Settings (Mail Settings) Full Platform Compromise & Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 1, 2026

Discovered by ZDM

Apr 1, 2026

Patch Available

Apr 1, 2026

Updated: affectedVersions, severity

Apr 2, 2026

Version History

v2

Last enriched 4d ago

v2Tier C4d ago

Updated affected versions to include 0.28.5.0, changed severity to HIGH, and noted that no exploit is available.

affectedVersionsseverity

via VulDB

v15d ago

Initial creation