Zero Day MonitorZDM

← Back to list

9.1

CVE-2026-35035PATCHED

ci4-cms-erp · ci4ms

CI4MS Company Information Public-Facing Page Full Platform Compromise & Full Account Takeover for All Roles & Privilege-Escalation via System Settings Company Information Stored DOM XSS

Description

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to 0.31.2.0 , the application fails to properly sanitize user-controlled input within System Settings – Company Information. Several administrative configuration fields accept attacker-controlled input that is stored server-side and later rendered without proper output encoding. These values are persisted in the database and rendered unsafely on public-facing pages only, such as the main landing page. There is no execution in the administrative dashboard—the vulnerability only impacts the public frontend. This vulnerability is fixed in 0.31.2.0.

Affected Products

Vendor	Product	Versions
ci4-cms-erp	ci4ms	composer/ci4-cms-erp/ci4ms: <= 0.31.1.0

References

https://github.com/ci4-cms-erp/ci4ms/security/advisories/GHSA-5ghq-42rg-769x(x_refsource_CONFIRM)

Related News (1 articles)

Tier C

VulDB3h ago

CVE-2026-35035 | ci4-cms-erp ci4ms 0.28.5.0/0.31.0.0 Setting cross site scripting (GHSA-5ghq-42rg-769x)

→ No new info (linked only)

CVSS 3.19.1 CRITICAL

VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited❌ No

Patch available

ci4-cms-erp/ci4ms@0.31.2.0

CWECWE-79

PublishedApr 6, 2026

Last enriched2h agov2

Trending Score30

Source articles1

Independent1

Info Completeness8/14

Missing: epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-34566

CI4MS: Pages Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

MEDIUMCVE-2026-34562

CI4MS: System Settings (Company Information) Full Platform Compromise & Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

CRITICALCVE-2026-34565

CI4MS: Menu Management (Posts) Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

HIGHCVE-2026-34569

CI4MS: Blogs Categories Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

MEDIUMCVE-2026-27599

CI4MS: System Settings (Mail Settings) Full Platform Compromise & Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 6, 2026

Discovered by ZDM

Apr 6, 2026

Patch Available

Apr 6, 2026

Updated: affectedVersions, severity

Apr 6, 2026

Version History

v2

Last enriched 2h ago

v2Tier C2h ago

Added affected versions 0.28.5.0 and 0.31.0.0, updated severity to MEDIUM, and noted that there is no available exploit.

affectedVersionsseverity

via VulDB

v13h ago

Initial creation