Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Baigo Subscribe
Filtered by product Baigo Cms
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-26607 1 Baigo 1 Baigo Cms 2022-04-13 6.5 MEDIUM 7.2 HIGH
A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.
CVE-2020-20584 1 Baigo 1 Baigo Cms 2021-07-12 4.3 MEDIUM 6.1 MEDIUM
A cross site scripting vulnerability in baigo CMS v4.0-beta-1 allows attackers to execute arbitrary web scripts or HTML via the form parameter post to /public/console/profile/info-submit/.
CVE-2019-9226 1 Baigo 1 Baigo Cms 2019-02-28 4.3 MEDIUM 6.1 MEDIUM
An issue was discovered in baigo CMS 2.1.1. There is a persistent XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the opt[base][BG_SITE_NAME] parameter to the bg_console/index.php?m=opt&c=request URI.
CVE-2019-9227 1 Baigo 1 Baigo Cms 2019-02-28 7.5 HIGH 9.8 CRITICAL
An issue was discovered in baigo CMS 2.1.1. There is a vulnerability that allows remote attackers to execute arbitrary code. A BG_SITE_NAME parameter with malicious code can be written into the opt_base.inc.php file.
CVE-2018-16458 1 Baigo 1 Baigo Cms 2018-10-24 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in baigo CMS v2.1.1. There is an index.php?m=article&c=request CSRF that can cause publication of any article.