PT-2026-6302 · Ci4Ms · Ci4Ms
Far-Horizons
·
Published
2026-02-02
·
Updated
2026-02-04
·
CVE-2026-25510
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
CI4MS versions prior to 0.28.5.0
Description
CI4MS is a CodeIgniter 4-based CMS skeleton that provides a production-ready, modular architecture with RBAC authorization and theme support. An authenticated user with file editor permissions can achieve Remote Code Execution (RCE) by leveraging the file creation and save endpoints. An attacker can upload and execute arbitrary PHP code on the server. The vulnerability is triggered through the file editor, allowing for arbitrary file creation. The vulnerable endpoints are the file creation and save endpoints. The
file parameter is involved in the file creation process.Recommendations
Update CI4MS to version 0.28.5.0 or later.
Exploit
Fix
RCE
Code Injection
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ci4Ms