CVE-2026-2010 – This CVE describes an improper authorization vu... (How to Fix)

Q: What is the severity of CVE-2026-2010?

CVE-2026-2010 has a CVSS score of 4.2 (MEDIUM). This CVE describes an improper authorization vulnerability in Sanluan PublicCMS's trade payment handler. Attackers can manipulate payment IDs to bypass authorization checks, potentially accessing unauthorized payment data or functions. Affected users are those running PublicCMS versions up to 4.0.202506.d, 5.202506.d, or 6.202506.d with the trade payment component enabled.

📋 TL;DR

This CVE describes an improper authorization vulnerability in Sanluan PublicCMS's trade payment handler. Attackers can manipulate payment IDs to bypass authorization checks, potentially accessing unauthorized payment data or functions. Affected users are those running PublicCMS versions up to 4.0.202506.d, 5.202506.d, or 6.202506.d with the trade payment component enabled.

💻 Affected Systems

Products:

Sanluan PublicCMS

Versions: Up to and including 4.0.202506.d, 5.202506.d, 6.202506.d

Operating Systems: Any OS running Java

Default Config Vulnerable: ⚠️ Yes

Notes: Requires the trade payment component to be enabled and accessible.

📦 What is this software?

Publiccms by Publiccms

View all CVEs affecting Publiccms →

Publiccms by Publiccms

View all CVEs affecting Publiccms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Unauthorized access to payment data, manipulation of payment transactions, or financial fraud.

🟠

Likely Case

Unauthorized viewing of payment information or limited manipulation of payment records.

🟢

If Mitigated

Minimal impact with proper network segmentation and access controls limiting exposure.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploit requires understanding of payment ID manipulation and authorization bypass techniques.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in commit 7329437e1288540336b1c66c114ed3363adcba02

Vendor Advisory: https://github.com/sanluan/PublicCMS/issues/108

Restart Required: Yes

Instructions:

1. Pull latest code from GitHub repository 2. Apply commit 7329437e1288540336b1c66c114ed3363adcba02 3. Rebuild and redeploy application 4. Restart PublicCMS service

🔧 Temporary Workarounds

Disable Trade Payment Component

all

Temporarily disable the vulnerable trade payment handler if not required

Modify configuration to disable com.publiccms.logic.service.trade.TradePaymentService

Network Access Restriction

all

Restrict network access to the payment endpoint

Configure firewall rules to limit access to /trade/payment endpoints

🧯 If You Can't Patch

Implement strict input validation for paymentId parameter
Add additional authorization checks before processing payment operations

🔍 How to Verify

Check if Vulnerable:

Check if running PublicCMS version 4.0.202506.d, 5.202506.d, or 6.202506.d with trade payment enabled

Check Version:

Check PublicCMS version in admin panel or application properties

Verify Fix Applied:

Verify commit 7329437e1288540336b1c66c114ed3363adcba02 is applied in codebase

📡 Detection & Monitoring

Log Indicators:

Unusual payment ID patterns
Failed authorization attempts on payment endpoints
Access to payment data from unauthorized users

Network Indicators:

Unusual requests to /trade/payment endpoints
Manipulation of paymentId parameter in requests

SIEM Query:

source="publiccms" AND (uri_path="/trade/payment" OR uri_path="/trade/*") AND (status_code=200 OR status_code=403) AND user_agent NOT IN ["expected_user_agents"]

📊 Metadata

CVE ID: CVE-2026-2010

CVSS v3 Score: 4.2 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

CWE: CWE-266

EPSS Score: 0.05% exploit probability (14.7th percentile)

Published: February 6, 2026

Last Updated: February 17, 2026

🔗 References

https://github.com/sanluan/PublicCMS/ Product
https://github.com/sanluan/PublicCMS/commit/7329437e1288540336b1c66c114ed3363adcba02 Patch
https://github.com/sanluan/PublicCMS/issues/108 Exploit,Vendor Advisory
https://github.com/sanluan/PublicCMS/issues/108#issue-3838143772 Exploit,Vendor Advisory
https://vuldb.com/?ctiid.344592 Permissions Required,VDB Entry
https://vuldb.com/?id.344592 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.743487 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-2010, you might also want to check these: