baserCMS Users Community

baserCMS

6 Versions 18 CVEs

Versions

Recent CVEs

CVE-2022-42486

Stored cross-site scripting vulnerability in User group management of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.

UNKNOWN Dec 07, 2022

CVE-2022-41994

Stored cross-site scripting vulnerability in Permission Settings of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.

UNKNOWN Dec 07, 2022

CVE-2021-20683

Improper neutralization of JavaScript input in the blog article editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors.

UNKNOWN Mar 26, 2021

CVE-2021-20682

baserCMS versions prior to 4.4.5 allows a remote attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors.

UNKNOWN Mar 26, 2021

CVE-2021-20681

Improper neutralization of JavaScript input in the page editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors.

UNKNOWN Mar 26, 2021

baserCMS

Versions

(baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions)

3.0.14 and earlier

versions prior to 4.4.5

4.0.5 and earlier

version 3.0.10 and earlier

versions prior to 4.7.2

Recent CVEs

CVE-2022-42486

CVE-2022-41994

CVE-2021-20683

CVE-2021-20682

CVE-2021-20681