CVE-2026-30880: basercms vulnerability

baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has an OS command injection vulnerability in the installer. This issue has been patched in version 5.2.3.
CVE-2026-30880CVSS 9.2General

CVE-2026-30880: basercms vulnerability

baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has an OS command injection vulnerability in the installer. This issue has been patched in version 5.2.3.

CVSS
9.2 CRITICAL
EPSS
78.99%
Known exploited
not in KEV
Product
basercms

What is known

baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has an OS command injection vulnerability in the installer. This issue has been patched in version 5.2.3.

Sources