CVE-2026-34567

CI4MS · CI4MS

A stored cross-site scripting (XSS) vulnerability in the CI4MS Categories section allows attackers to inject malicious scripts that execute when categories are viewed.

Executive summary

A stored XSS vulnerability in the CI4MS Categories module allows attackers to inject malicious code that executes in the context of other users' browsers.

Vulnerability

The application lacks sufficient output encoding for user-supplied data in the Categories section. Malicious JavaScript injected into categories is stored server-side and executed whenever those categories are rendered within the application.

Business impact

The CVSS score of 9.1 highlights the critical nature of this flaw, as it allows attackers to compromise the integrity of the user experience. Successful exploitation could lead to the theft of session tokens, unauthorized performative actions, or the delivery of malicious content to administrative users.

Remediation

Immediate Action: Update CI4MS to version 0.31.0.0, as this release remediates the underlying sanitization failures in the Categories module.

Proactive Monitoring: Audit existing category descriptions for injected scripts and monitor traffic for anomalous patterns involving the Categories management interface.

Compensating Controls: Utilize Content Security Policy (CSP) headers to restrict the sources from which scripts can be executed, significantly reducing the impact of stored XSS.

Exploitation status

Public Exploit Available: Not specified

Analyst recommendation

Given the high CVSS severity, this vulnerability should be addressed immediately. Upgrading to version 0.31.0.0 is the only reliable method to ensure that input sanitization and output encoding are correctly applied across all vulnerable modules in the CMS.