A vulnerability has been found in Sanluan PublicCMS up to version 5.202506.d. This impacts the function Save of the file com/publiccms/controller/admin/sys/TaskTemplateAdminController.java of the component Task Template Management Handler. Such manipulation of the argument path leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
The severity of this vulnerability is classified as low, with a CVSS score of 2. This indicates that while the vulnerability exists, the potential impact on organizations is limited. However, organizations should still be aware of the risk to their systems.
Risk to organizations includes unauthorized access to sensitive files, which could lead to further exploitation. Organizations should prioritize assessment of their systems to identify any instances of the vulnerable software.
Given the nature of this vulnerability, organizations should address this issue in their routine maintenance cycles. Prompt remediation can help mitigate the risk posed by this vulnerability.
Vulnerability Details
The vulnerability allows for path traversal, which can be exploited by an attacker to access files and directories outside the intended path. This could lead to unauthorized data exposure. The CVSS score is 2, indicating a low severity level. The affected product is PublicCMS, specifically the version up to 5.202506.d, and the vulnerability was published on January 18, 2026.
Technical Analysis
The root cause of this vulnerability is related to improper validation of user input in the Save function. Attackers may leverage this weakness by manipulating the path argument to gain access to sensitive files. The attack vector is network-based, and the complexity is low, requiring high privileges but no user interaction. The potential impact on confidentiality, integrity, and availability is low.
Risk & Impact Analysis
Organizations running PublicCMS must consider the implications of this vulnerability. Although categorized as low severity, the potential for unauthorized file access can lead to significant risks, particularly in environments where sensitive data is stored. The urgency for organizations to address this vulnerability should be assessed based on their specific deployment of PublicCMS and its exposure to the internet.
Exploitation Status
Signal | Status |
|---|---|
Known Exploit | No |
Public PoC | No |
Actively Exploited | No |
Ransomware Use | No |
Affected Versions
All versions prior to vendor patch are affected, specifically PublicCMS versions up to 5.202506.d.
Mitigation & Remediation
Organizations should apply the latest patches from the vendor as soon as they are available. In the interim, consider implementing configuration hardening to limit the potential attack surface. Network controls should be enforced to monitor and restrict access to the PublicCMS application. Organizations should validate remediation through penetration testing to identify similar weaknesses.
Detection Guidance
System logs should be monitored for any unusual access patterns or unauthorized access attempts. Behavioral anomalies in file management operations can also indicate potential exploitation. Network signatures should be established to detect abnormal requests to the Task Template Management Handler.
AppSecure Threat Intelligence Insight
This vulnerability highlights the importance of secure coding practices, especially regarding input validation. Organizations should ensure that their development teams are adhering to best practices to avoid similar vulnerabilities in the future. For further insights, organizations can refer to the following resources: vulnerability management program design and penetration testing methodology to enhance their security posture.
Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.
.webp)