CVE-2026-6796
published 2026-04-21CVE-2026-6796: A vulnerability was determined in Sanluan PublicCMS up to 6.202506.d. Affected is the function log_login of the file…
PriorityP424medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
EPSS
0.15%
4.3th percentile
A vulnerability was determined in Sanluan PublicCMS up to 6.202506.d. Affected is the function log_login of the file core/src/main/java/com/publiccms/controller/admin/LoginAdminController.java of the component Failed Login Handler. This manipulation of the argument errorPassword causes cleartext storage in a file or on disk. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sanluan | publiccms | — | — |
| sanluan | publiccms | — | — |
| sanluan | publiccms | — | — |
| sanluan | publiccms | — | — |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv4.05.3MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Sanluan PublicCMS up to 6.202506.d Failed Login LoginAdminController.java log_login errorPassword cleartext storage in file (EUVD-2026-24500)
vuldb·2026-04-22·CVSS 5.3
CVE-2026-6796 [MEDIUM] Sanluan PublicCMS up to 6.202506.d Failed Login LoginAdminController.java log_login errorPassword cleartext storage in file (EUVD-2026-24500)
A vulnerability was found in Sanluan PublicCMS up to 6.202506.d. It has been classified as problematic. Affected is the function log_login of the file core/src/main/java/com/publiccms/controller/admin/LoginAdminController.java of the component Failed Login Handler. This manipulation of the argument errorPassword causes cleartext storage in a file or on disk.
The identification of this vulnerability is CVE-2026-6796. It is possible to initiate the attack remotely. There is no exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.
GHSA
GHSA-crfw-8vvm-pm25: A vulnerability was determined in Sanluan PublicCMS up to 6
ghsa_unreviewed·2026-04-21
CVE-2026-6796 [MEDIUM] CWE-312 GHSA-crfw-8vvm-pm25: A vulnerability was determined in Sanluan PublicCMS up to 6
A vulnerability was determined in Sanluan PublicCMS up to 6.202506.d. Affected is the function log_login of the file core/src/main/java/com/publiccms/controller/admin/LoginAdminController.java of the component Failed Login Handler. This manipulation of the argument errorPassword causes cleartext storage in a file or on disk. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-21
Published