Lucene search
HistoryFeb 22, 2024 - 3:15 p.m.
CVE-2023-51450
basercms
os command injection
site search
fix
version 5.0.9
5.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
16.4%
baserCMS is a website development framework. Prior to version 5.0.9, there is an OS Command Injection vulnerability in the site search feature of baserCMS. Version 5.0.9 contains a fix for this vulnerability.
Related
cvelist
cvelist
CVE-2023-51450 baserCMS OS command injection vulnerability in Installer
2024-02-22 14:50:51
github
github
baserCMS OS command injection vulnerability in Installer
2024-02-22 19:43:19
osv
osv
baserCMS OS command injection vulnerability in Installer
2024-02-22 19:43:19
CVE-2023-51450
2024-02-22 15:15:08
prion
prion
Command injection
2024-02-22 15:15:00
cve
cve
CVE-2023-51450
2024-02-22 15:15:08
jvn
jvn
JVN#73283159: Multiple vulnerabilities in baserCMS
2024-02-27 00:00:00
5.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
16.4%
Related for NVD:CVE-2023-51450