CVE-2026-5987

Name of the Vulnerable Software and Affected Versions Sanluan PublicCMS versions prior to 6.202506.d

Description A security issue exists in Sanluan PublicCMS. The AbstractFreemarkerView.doRender function within the file publiccms-parent/publiccms-core/src/main/java/com/publiccms/common/base/AbstractFreemarkerView.java, related to the FreeMarker Template Handler component, suffers from improper neutralization of special elements used in a template engine. This allows for remote exploitation. The exploit has been publicly disclosed.

Recommendations Update to a version later than 6.202506.d.