Vulnerabilities > Basercms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-30 | CVE-2023-43792 | Code Injection vulnerability in Basercms baserCMS is a website development framework. | 9.8 |
| 2023-10-30 | CVE-2023-43647 | Cross-site Scripting vulnerability in Basercms baserCMS is a website development framework. | 5.4 |
| 2023-10-30 | CVE-2023-43648 | Path Traversal vulnerability in Basercms baserCMS is a website development framework. | 6.5 |
| 2023-10-30 | CVE-2023-43649 | Cross-Site Request Forgery (CSRF) vulnerability in Basercms baserCMS is a website development framework. | 9.8 |
| 2023-10-27 | CVE-2023-29009 | Cross-site Scripting vulnerability in Basercms baserCMS is a website development framework with WebAPI that runs on PHP8 and CakePHP4. | 6.1 |
| 2022-12-07 | CVE-2022-41994 | Cross-site Scripting vulnerability in Basercms Stored cross-site scripting vulnerability in Permission Settings of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script. | 4.8 |
| 2022-12-07 | CVE-2022-42486 | Cross-site Scripting vulnerability in Basercms Stored cross-site scripting vulnerability in User group management of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script. | 4.8 |
| 2022-11-25 | CVE-2022-39325 | Cross-site Scripting vulnerability in Basercms BaserCMS is a content management system with a japanese language focus. | 6.1 |
| 2021-11-26 | CVE-2021-41243 | OS Command Injection vulnerability in Basercms There is a Potential Zip Slip Vulnerability and OS Command Injection Vulnerability on the management system of baserCMS. | 9.0 |
| 2021-11-26 | CVE-2021-41279 | Path Traversal vulnerability in Basercms BaserCMS is an open source content management system with a focus on Japanese language support. | 9.0 |