Vulnerabilities > Baigo

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-06	CVE-2022-26607	Unrestricted Upload of File with Dangerous Type vulnerability in Baigo CMS 3.0 A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file. network low complexity baigo CWE-434	7.2
2021-07-08	CVE-2020-20584	Cross-site Scripting vulnerability in Baigo CMS 4.0 A cross site scripting vulnerability in baigo CMS v4.0-beta-1 allows attackers to execute arbitrary web scripts or HTML via the form parameter post to /public/console/profile/info-submit/. network low complexity baigo CWE-79	6.1
2019-03-24	CVE-2019-10015	Code Injection vulnerability in Baigo SSO 3.0.1 baigoStudio baigoSSO v3.0.1 allows remote attackers to execute arbitrary PHP code via the first form field of a configuration screen, because this code is written to the BG_SITE_NAME field in the opt_base.inc.php file. network low complexity baigo CWE-94	7.2
2019-02-28	CVE-2019-9227	Code Injection vulnerability in Baigo CMS 2.1.1 An issue was discovered in baigo CMS 2.1.1. network low complexity baigo CWE-94 critical	9.8
2019-02-28	CVE-2019-9226	Cross-site Scripting vulnerability in Baigo CMS 2.1.1 An issue was discovered in baigo CMS 2.1.1. network low complexity baigo CWE-79	6.1
2018-09-04	CVE-2018-16458	Cross-Site Request Forgery (CSRF) vulnerability in Baigo CMS 2.1.1 An issue was discovered in baigo CMS v2.1.1. network low complexity baigo CWE-352	6.5

Vulnerabilities > Baigo {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Baigo"}]}