Headline
CVE-2023-44954: Download BigTree CMS · BigTree CMS
Cross Site Scripting vulnerability in BigTree CMS v.4.5.7 allows a remote attacker to execute arbitrary code via the ID parameter in the Developer Settings functions.
What’s Next?
Install
Follow these simple instructions to install and configure BigTree on your server.
Installation Instructions
Customize
BigTree is not a microwave meal; it’s a gourmet meal from scratch. If you know PHP, you should be comfortable here.
Developer Guide
Get Help, Help Others
Post issues to the forum or help others by answering their questions.
BigTree Forums
Looking For Older Versions?
Versions 4.0 and 4.1 of BigTree have reached end of life status and no longer receive security updates. Please update to BigTree 4.4 as soon as possible.
BigTree 4.3 has reached security updates only status and security related releases will end on January 15, 2020.
Download BigTree 4.3.4 or checkout the 4.3.x branch on GitHub. Release Notes
BigTree 4.2 has reached security updates only status and security related releases will end on November 1, 2019.
Download BigTree 4.2.24 or checkout the 4.2.x branch on GitHub. Release Notes
BigTree 4.1 has reached end of life status and security related releases ended January 1, 2017.
Download BigTree 4.1.18 or checkout the 4.1.x branch on GitHub. Release Notes
BigTree 4.0 has reached end of life status and security related releases ended January 1, 2016.
Download BigTree 4.0.13 or checkout the 4.0.x branch on GitHub. Release Notes