baserCMS is an enterprise-level content management system (CMS) from the baserCMS team. A path traversal vulnerability exists in versions of baserCMS prior to 4.8.0, which stems from a lack of validity checking of paths when processing directory requests by the form submission data management feature, and can be exploited by an attacker to obtain sensitive information.