An issue in sanluan PublicCMS v.4.0.202302.e allows an attacker to escalate privileges via the change password function.
https://github.com/menghaining/PoC/blob/main/PublicCMS/publishCMS--PoC.md
https://gist.github.com/menghaining/8d424faebfe869c80eadaea12bbdd158