EPSS
Percentile
29.2%
Improper neutralization of JavaScript input in the blog article editing function of baserCMS versions prior to 4.4.5 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors.
basercms.net/security/JVN64869876
github.com/baserproject/basercms/commit/88ccc61e5656b05dd13204d61de706efaa2cd0b1
jvn.jp/en/jp/JVN64869876/index.html
nvd.nist.gov/vuln/detail/CVE-2021-20683