Vulnerabilities > Basercms > Basercms > 3.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-10-06 | CVE-2015-5641 | SQL Injection vulnerability in Basercms SQL injection vulnerability in baserCMS before 3.0.8 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. | 6.5 |
2015-10-06 | CVE-2015-5640 | Permissions, Privileges, and Access Controls vulnerability in Basercms baserCMS before 3.0.8 allows remote authenticated users to modify arbitrary user settings via a crafted request. | 6.5 |