A remote code execution (RCE) vulnerability in baigo CMS v3.0-alpha-2 was discovered to allow attackers to execute arbitrary code via uploading a crafted PHP file.Referenceshttps://github.com/baigoStudio/baigoCMS/https://github.com/baigoStudio/baigoCMS/issues/9