PT-2026-29147 · Basercms · Basercms

Cuonggg

+12

·

Publicado

2026-03-31

·

Atualizado

2026-03-31

·

CVE-2026-27697

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions baserCMS versions prior to 5.2.3
Description baserCMS is a website development framework. Prior to version 5.2.3, it contains a SQL injection flaw within blog posts. The issue allows for potential unauthorized access or modification of data through crafted SQL queries. The vulnerable component is related to the processing of blog post content. The blog posts functionality is affected.
Recommendations Update baserCMS to version 5.2.3 or later.

Exploit

Correção

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2026-27697
GHSA-VH89-RJPH-2G7P

Produtos afetados

Basercms