CVE-2025-32957 | baserproject basercms up to 5.2.2 require_once unrestricted upload (GHSA-hv78-cwp4-8r7r)

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability was found in baserproject basercms up to 5.2.2 and classified as critical. This vulnerability affects the function require_once. Such manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-32957. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2025-32957 | baserproject basercms up to 5.2.2 require_once unrestricted upload (GHSA-hv78-cwp4-8r7r)

Post correlati

CVE-2025-35027 | Unitree Go2/G1 up to 1.1.7 BLE Module wpa_supplicant_restart.sh os command injection

CVE-2024-50345 | Symfony redirect

CVE-2024-9679 | Trellix DLP Extension 11.11.1.3 hard-coded key

CVE-2024-52025 | Netgear XR300/R6400/R7000P HTTP POST Request geniepppoe.cgi pppoe_localip stack-based overflow