CVE-2026-30940 HIGH

CVE-2026-30940: baserCMS: Path Traversal in Theme File API Leads to Arbitrary File Write and RCE

Vendor Baserproject
Product basercms
Weakness CWE-22 · Path traversal
Published March 31, 2026
Last update April 2, 2026

CVSS base score

7.2/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

baserCMS is a website development framework. Prior to version 5.2.3, a path traversal vulnerability exists in the theme file management API (/baser/api/admin/bc-theme-file/theme_files/add.json) that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path parameter to create a PHP file in an arbitrary directory outside the theme directory, which may result in remote code execution (RCE). This issue has been patched in version 5.2.3.

Key dates

02Disclosure timeline

March 31, 2026 CVE published
April 2, 2026 Record updated