CVE-2026-30877 | baserproject basercms up to 5.2.2 User Account update os command injection (GHSA-m9g7-rgfc-jcm7)

A vulnerability was found in baserproject basercms up to 5.2.2 and classified as critical. The affected element is the function update of the component User Account Handler. Executing a manipulation can lead to os command injection.

This vulnerability is handled as CVE-2026-30877. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More