Vulnerabilities > Baigo > Baigo CMS > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-06 CVE-2022-26607 Unrestricted Upload of File with Dangerous Type vulnerability in Baigo CMS 3.0
A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.
network
low complexity
baigo CWE-434
7.2
7.2