baigoStudio/baigoCMS

baigoStudio/baigoCMS

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases5

Frequency6 months 6 days

Last Release about 4 years ago

Stars98

网站内容管理系统

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-26607 ↗	Apr 6, 2022Wednesday, 6 April 2022, 21:15	7.2 HIGH	6.5 MEDIUM
A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.
CVE-2019-9226 ↗	Feb 28, 2019Thursday, 28 February 2019, 14:29	—	4.3 MEDIUM
An issue was discovered in baigo CMS 2.1.1. There is a persistent XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the opt[base][BG_SITE_NAME] parameter to the bg_console/index.php?m=opt&c=request URI.
CVE-2019-9227 ↗	Feb 28, 2019Thursday, 28 February 2019, 14:29	—	7.5 HIGH
An issue was discovered in baigo CMS 2.1.1. There is a vulnerability that allows remote attackers to execute arbitrary code. A BG_SITE_NAME parameter with malicious code can be written into the opt_base.inc.php file.
CVE-2018-16458 ↗	Sep 4, 2018Tuesday, 4 September 2018, 11:29	—	4.3 MEDIUM
An issue was discovered in baigo CMS v2.1.1. There is an index.php?m=article&c=request CSRF that can cause publication of any article.