baigo CMS is an open source PHP-based web content management system (CMS). baigo CMS v4.0 contains a cross-site scripting vulnerability that can be exploited by attackers to execute arbitrary web script or HTML by submitting form parameters to a public console configuration file.