Vulnerabilities > CVE-2023-43647 - Unspecified vulnerability in Basercms
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
baserCMS is a website development framework. Prior to version 4.8.0, there is a cross-site scripting vulnerability in the file upload feature of baserCMS. Version 4.8.0 contains a patch for this issue.
Vulnerable Configurations
References
- https://basercms.net/security/JVN_24381990
- https://basercms.net/security/JVN_24381990
- https://github.com/baserproject/basercms/commit/eb5977533d05db4f3bb03bd19630b66052799b2e
- https://github.com/baserproject/basercms/commit/eb5977533d05db4f3bb03bd19630b66052799b2e
- https://github.com/baserproject/basercms/security/advisories/GHSA-ggj4-78rm-6xgv
- https://github.com/baserproject/basercms/security/advisories/GHSA-ggj4-78rm-6xgv