Vulnerabilities > Basercms > Basercms > 4.1.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-11-05 | CVE-2018-18942 | Unrestricted Upload of File with Dangerous Type vulnerability in Basercms In baserCMS before 4.1.4, lib\Baser\Model\ThemeConfig.php allows remote attackers to execute arbitrary PHP code via the admin/theme_configs/form data[ThemeConfig][logo] parameter. | 6.5 |