Baigo - Baigo Cms CVE

Filtered by vendor Baigo Subscribe

Filtered by product Baigo Cms

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-9226	1 Baigo	1 Baigo Cms	2019-02-28	4.3 MEDIUM	6.1 MEDIUM
An issue was discovered in baigo CMS 2.1.1. There is a persistent XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the opt[base][BG_SITE_NAME] parameter to the bg_console/index.php?m=opt&c=request URI.
CVE-2018-16458	1 Baigo	1 Baigo Cms	2018-10-25	4.3 MEDIUM	6.5 MEDIUM
An issue was discovered in baigo CMS v2.1.1. There is an index.php?m=article&c=request CSRF that can cause publication of any article.

Vulnerabilities (CVE)