A vulnerability categorized as problematic has been discovered in SEMCMS 5.0 . The affected element is an unknown function of the file /admin/semcms_user.php of the component POST Handler . Executing a manipulation can lead to cross-site request forgery. This vulnerability appears as CVE-2026-39170 . The attack may be performed from remote. There is no available exploit.