ci4-cms-erp/ci4ms

Modular CodeIgniter 4 CMS featuring RBAC admin, theming, blog/page management, elFinder media integration, and CLI tooling for rapid customization.

Latest 0.32.0.0

100%

Total Score

Dependencies

100

Maturity

100

Supply Chain

100

Are you affected? Scan for Free

Vulnerabilities

Title	Versions	Severity
CVE-2026-45270 ci4-cms-erp/ci4ms is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in versions 0.0.0 - 0.31.8.0.	0.0.0 - 0.31.8.0
CVE-2026-45139 ci4-cms-erp/ci4ms is vulnerable to External Control of File Name or Path in versions 0.0.0 - 0.31.8.0.	0.0.0 - 0.31.8.0
CVE-2026-45138 ci4-cms-erp/ci4ms is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in versions 0.0.0 - 0.31.8.0.	0.0.0 - 0.31.8.0
CVE-2026-41891 ci4-cms-erp/ci4ms is vulnerable to Insufficient Session Expiration in versions 0.26.0 - 0.31.7.0.	0.26.0 - 0.31.7.0
CVE-2026-41890 ci4-cms-erp/ci4ms is vulnerable to Improper Input Validation in versions 0.31.1.0 - 0.31.7.0.	0.31.1.0 - 0.31.7.0

No maintainer information available.

Dependency	Last Release	Score
gregwar/captcha Version 1.3.0	—	—
studio-42/elfinder Version 2.1.68	—	—
codeigniter4/shield Version 1.3.0	—	—
ezyang/htmlpurifier Version 4.19	—	—
claviska/simpleimage Version 4.4.0	—	—