CVE-2026-30880

UNKNOWN 0.0

baserCMS: OS command injection vulnerability in installer

CVSS Score

0.0

EPSS Score

0.3%

EPSS Percentile

52th

baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has an OS command injection vulnerability in the installer. This issue has been patched in version 5.2.3.

CWE	CWE-78
Vendor	baserproject
Product	basercms
Published	Mar 31, 2026
Last Updated	Mar 31, 2026

Stay Ahead of the Next One

Get instant alerts for baserproject basercms

Be the first to know when new unknown vulnerabilities affecting baserproject basercms are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

baserproject / basercms

< 5.2.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/baserproject/basercms/security/advisories/GHSA-6hpg-8rx3-cwgv basercms.net: https://basercms.net/security/JVN_20837860 github.com: https://github.com/baserproject/basercms/releases/tag/5.2.3