NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-41891

Summary	CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. From version 0.26.0 to before version 0.31.8.0, the auth filter has the deactivated/banned user check commented out. This issue has been patched in version 0.31.8.0.
Publication Date	May 7, 2026, 1:16 p.m.
Registration Date	May 8, 2026, 4:09 a.m.
Last Update	May 7, 2026, 11:57 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/ci4-cms-erp/ci4ms/releases/tag/0.31.8.0	security-advisories@github.com
2	https://github.com/ci4-cms-erp/ci4ms/security/advisories/GHSA-5hfv-c864-qcq9	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-613	不適切なセッション期限	https://cwe.mitre.org/data/definitions/613.html