Search...

CVE-2016-4878

2017-05-12T18:29:00

ID CVE-2016-4878
Type cve
Reporter cve@mitre.org
Modified 2017-05-18T13:53:00

Description

Cross-site request forgery (CSRF) vulnerability in baserCMS version 3.0.10 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

JSON Vulners Source

Initial Source

{"id": "CVE-2016-4878", "bulletinFamily": "NVD", "title": "CVE-2016-4878", "description": "Cross-site request forgery (CSRF) vulnerability in baserCMS version 3.0.10 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.", "published": "2017-05-12T18:29:00", "modified": "2017-05-18T13:53:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4878", "reporter": "cve@mitre.org", "references": ["https://jvn.jp/en/jp/JVN92765814/index.html", "http://basercms.net/security/JVN92765814", "http://www.securityfocus.com/bid/93217"], "cvelist": ["CVE-2016-4878"], "type": "cve", "lastseen": "2020-10-03T12:10:46", "edition": 3, "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "jvn", "idList": ["JVN:92765814"]}], "modified": "2020-10-03T12:10:46", "rev": 2}, "score": {"value": 7.2, "vector": "NONE", "modified": "2020-10-03T12:10:46", "rev": 2}, "vulnersScore": 7.2}, "cpe": ["cpe:/a:basercms:basercms:3.0.10"], "affectedSoftware": [{"cpeName": "basercms:basercms", "name": "basercms", "operator": "eq", "version": "3.0.10"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:a:basercms:basercms:3.0.10:*:*:*:*:*:*:*"], "cwe": ["CWE-352"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:basercms:basercms:3.0.10:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}}

{"jvn": [{"lastseen": "2019-05-29T19:49:11", "bulletinFamily": "info", "cvelist": ["CVE-2016-4879", "CVE-2016-4887", "CVE-2016-4886", "CVE-2016-4882", "CVE-2016-4876", "CVE-2016-4884", "CVE-2016-4881", "CVE-2016-4880", "CVE-2016-4878", "CVE-2016-4885", "CVE-2016-4877", "CVE-2016-4883"], "description": "\n ## Description\n\nbaserCMS provided by baserCMS User Group is an opensource content management system. \nbaserCMS and bundled plugins \"Blog\", \"Mail\", \"Feed\", and \"Uploader\" contain the following vulnerabilities. \n \n**Cross-site request forgery ([CWE-352](<https://cwe.mitre.org/data/definitions/352.html>)) - **CVE-2016-4879, CVE-2016-4881, CVE-2016-4884, CVE-2016-4885, CVE-2016-4886 \nWhen any of those plugins \"Blog\", \"Mail\", or \"Feed\" is enabled and a logged-in user in Administrative group accesses a malicious URL, the user may be forced to conduct unintended operations on the baserCMS server. \n\nCVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | **Base Score: 4.3** \n---|---|--- \nCVSS v2 | AV:N/AC:H/Au:N/C:N/I:P/A:N | **Base Score: 2.6** \n \n**Cross-site request forgery ([CWE-352](<https://cwe.mitre.org/data/definitions/352.html>))** \\- CVE-2016-4887 \nWhen \"Uploader\" plugin is enabled and a logged-in user in Administrative group accesses a malicious URL, the user may be forced to conduct unintended operations on the baserCMS server such as deletion of a file or alteration of access restriction configuration. CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N | **Base Score: 5.4** \n---|---|--- \nCVSS v2 | AV:N/AC:H/Au:N/C:P/I:P/A:N | **Base Score: 4.0** \n \n**Cross-site request forgery ([CWE-352](<https://cwe.mitre.org/data/definitions/352.html>))** \\- CVE-2016-4876 \nWhen a logged-in user in Administrative group accesses a malicious URL, the user may be forced to create a PHP file in a certain directory. As a result, arbitrary PHP code may be executed on the server. CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | **Base Score: 4.3** \n---|---|--- \nCVSS v2 | AV:N/AC:H/Au:N/C:N/I:P/A:N | **Base Score: 2.6** \n \n**Cross-site request forgery ([CWE-352](<https://cwe.mitre.org/data/definitions/352.html>))** \\- CVE-2016-4878, CVE-2016-4882 \nWhen a logged-in user in Administrative group accesses a malicious URL, the user may be forced to conduct unintended operations on baserCMS. CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N | **Base Score: 5.4** \n---|---|--- \nCVSS v2 | AV:N/AC:H/Au:N/C:P/I:P/A:N | **Base Score: 4.0** \n \n**Stored cross-site scripting ([CWE-79](<https://cwe.mitre.org/data/definitions/79.html>))** \\- CVE-2016-4877, CVE-2016-4880, CVE-2016-4883 \nA user in Administrative group may be tricked to insert an arbitrary script in an administration page. The stored script may be executed on the user's web browser when another user in Administrative group accesses the administration page. CVSS v3 | CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N | **Base Score: 5.4** \n---|---|--- \nCVSS v2 | AV:N/AC:L/Au:S/C:N/I:P/A:N | **Base Score: 4.0**\n\n ## Impact\n\n * An arbitrary script may be executed on user's web browser - CVE-2016-4877, CVE-2016-4880, CVE-2016-4883\n * An arbitrary administrative operation on the baserCMS server may be executed such as configuration alteration - CVE-2016-4879, CVE-2016-4881, CVE-2016-4884, CVE-2016-4885, CVE-2016-4886, CVE-2016-4887, CVE-2016-4876, CVE-2016-4878, CVE-2016-4882\n\n ## Solution\n\n**Update the Software** \nUpdate the software according to the information provided by the developer. \nAn old version of \"Uploader\" plugin is provided at the baser market. The developer states that applying baserCMS update overwrites the old version of \"Uploader\" plugin.\n\n ## Products Affected\n\n * baserCMS version 3.0.10 and earlier\n * baserCMS plugin Blog version 3.0.10 and earlier\n * baserCMS plugin Mail version 3.0.10 and earlier\n * baserCMS plugin Feed version 3.0.10 and earlier\n * baserCMS plugin Uploader version 3.0.10 and earlier\n", "edition": 5, "modified": "2016-09-29T00:00:00", "published": "2016-09-29T00:00:00", "id": "JVN:92765814", "href": "http://jvn.jp/en/jp/JVN92765814/index.html", "title": "JVN#92765814: Multiple vulnerabilities in baserCMS", "type": "jvn", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}]}