Lucene search

PRIOn knowledge basePRION:CVE-2023-43647

HistoryOct 30, 2023 - 7:15 p.m.

Cross site scripting

2023-10-3019:15:00

PRIOn knowledge base

www.prio-n.com

basercms

website development

framework

cross-site scripting

vulnerability

file upload

patch

nvd

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.3%

JSON

baserCMS is a website development framework. Prior to version 4.8.0, there is a cross-site scripting vulnerability in the file upload feature of baserCMS. Version 4.8.0 contains a patch for this issue.

CPENameOperatorVersion
basercmslt4.8.0

CPE	Name	Operator	Version
	basercms	lt	4.8.0

References

basercms.net/security/JVN_24381990

github.com/baserproject/basercms/commit/eb5977533d05db4f3bb03bd19630b66052799b2e

github.com/baserproject/basercms/security/advisories/GHSA-ggj4-78rm-6xgv