baserproject/basercms is vulnerable to OS command injection. An attacker can upload malicious zip files through the upload functionality in the library, leading to the path traversal on the host operating system
CPE | Name | Operator | Version |
---|---|---|---|
baserproject/basercms | eq | 4.4.8 | |
baserproject/basercms | eq | 4.4.8 |