Login Sign Up

CVE-2024-31759

8.8 HIGH
Authentication Bypass

📋 TL;DR

This vulnerability in sanluan PublicCMS v4.0.202302.e allows attackers to escalate privileges through the change password function. Attackers can gain administrative access by exploiting insufficient access controls. All users running the affected version are vulnerable.

💻 Affected Systems

Products:
  • sanluan PublicCMS
Versions: v4.0.202302.e
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Only this specific version is confirmed affected. Other versions may be vulnerable but not confirmed.

📦 What is this software?

Publiccms by Publiccms

View all CVEs affecting Publiccms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise where attackers gain administrative privileges, potentially leading to data theft, website defacement, or further network penetration.

🟠

Likely Case

Attackers gain administrative access to the CMS, allowing content manipulation, user account compromise, and installation of backdoors.

🟢

If Mitigated

Limited impact if proper network segmentation and monitoring are in place, though administrative access would still be compromised.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit requires authenticated access but minimal technical skill. Public PoC available makes exploitation straightforward.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found

Restart Required: No

Instructions:

No official patch available. Consider upgrading to latest version if vulnerability is fixed there, or implement workarounds.

🔧 Temporary Workarounds

Disable change password function

all

Temporarily disable the vulnerable change password endpoint to prevent exploitation

Modify web server configuration to block access to /changePassword endpoint

Implement additional authentication

all

Add multi-factor authentication or additional verification for password changes

Implement custom authentication middleware for password change requests

🧯 If You Can't Patch

  • Implement strict network access controls to limit who can access the CMS administration interface
  • Enable detailed logging and monitoring of all password change attempts and administrative actions

🔍 How to Verify

Check if Vulnerable:

Check if running PublicCMS version 4.0.202302.e. Test if unauthorized users can access password change functionality.

Check Version:

Check CMS configuration files or admin panel for version information

Verify Fix Applied:

Verify that only authorized users with proper permissions can change passwords. Test privilege escalation attempts.

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed password change attempts from single user
  • Password changes from non-admin users
  • Unusual administrative activity following password changes

Network Indicators:

  • Unusual traffic patterns to password change endpoints
  • Requests bypassing normal authentication flows

SIEM Query:

source="publiccms" AND (event="password_change" OR url="/changePassword") AND user_role!="admin"

📊 Metadata

CVE ID: CVE-2024-31759
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-284
Published: April 16, 2024
Last Updated: June 12, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-31759, you might also want to check these:

CVE-2021-34795 10.0

This critical vulnerability in Cisco Catalyst PON Series Switches ONT web management interface allow...

Same vulnerability type (CWE-284)
CVE-2021-40113 10.0

Multiple vulnerabilities in Cisco Catalyst PON Series Switches ONT web management interface allow un...

Same vulnerability type (CWE-284)
CVE-2026-21636 10.0

A critical vulnerability in Node.js v25's experimental permission model allows attacker-controlled i...

Same vulnerability type (CWE-284)