CVE-2026-3289 | Sanluan PublicCMS 6.202506.d Template Cache Generation TemplateCacheComponent.java saveMetadata path traversal

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability was found in Sanluan PublicCMS 6.202506.d and classified as critical. This impacts the function saveMetadata of the file TemplateCacheComponent.java of the component Template Cache Generation. Executing a manipulation can lead to path traversal.

This vulnerability is handled as CVE-2026-3289. The attack can be executed remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-3289 | Sanluan PublicCMS 6.202506.d Template Cache Generation TemplateCacheComponent.java saveMetadata path traversal

Post correlati

CVE-2024-20419 | Cisco Smart Software Manager On-Prem 8-202206 HTTP Request unverified password change (cisco-sa-cssm-auth-sLw3uhUy)

CVE-2024-13636 | UnitedThemes Brooklyn Plugin up to 4.9.9.2 on WordPress deserialization

CVE-2024-21033 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution

CVE-2023-52882 | Linux Kernel up to 6.8.9 sunxi-ng denial of service