752 matches found
JVN#53465692: baserCMS vulnerable to session management
baserCMS is an open-source Contents Management System CMS. baserCMS contains a vulnerability in session management. Impact If a web server is hosting several websites, and baserCMS are installed on the respective websites, an administrator of a baserCMS can access baserCMS instance of the other...
CVE-2011-2673
Cross-site scripting XSS vulnerability in BaserCMS before 1.6.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2011-2674
BaserCMS before 1.6.12 does not properly restrict additions to the membership of the operators group, which allows remote authenticated users to gain privileges via unspecified vectors...
Design/Logic Flaw
BaserCMS before 1.6.12 does not properly restrict additions to the membership of the operators group, which allows remote authenticated users to gain privileges via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in BaserCMS before 1.6.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2011-2673
Cross-site scripting XSS vulnerability in BaserCMS before 1.6.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2011-2674
CVE-2011-2674 affects BaserCMS prior to 1.6.12. The issue is an access-control bug where adding a user to the default operators group does not properly restrict privileges, allowing remote authenticated users to escalate privileges. Affected versions include BaserCMS 1.6.11.4 and earlier. Root ca...
CVE-2011-2673
CVE-2011-2673 corresponds to a cross-site scripting (XSS) vulnerability in BaserCMS prior to 1.6.13.2. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected software is BaserCMS, with versions up to 1.6.13.1 explicitly mentioned; the vulnerabil...
CVE-2011-2674
BaserCMS before 1.6.12 does not properly restrict additions to the membership of the operators group, which allows remote authenticated users to gain privileges via unspecified vectors...
BaserCMS vulnerable to access restriction
Overview BaserCMS contains a vulnerability in access restriction. BaserCMS is an open-source Contents Management System CMS. BaserCMS contains a vulnerability in access restriction where adding a user in the user group "operators" which is created by default when BaserCMS is installed. Masako Ohn...
JVN#16617002: BaserCMS vulnerable to access restriction
BaserCMS is an open-source Contents Management System CMS. BaserCMS contains a vulnerability in access restriction where adding a user in the user group "operators" which is created by default when BaserCMS is installed. Impact Users without administrative privileges may obtain administrative...
JVN#09789751: BaserCMS vulnerable to cross-site scripting
BaserCMS is an open-source Contents Management System CMS. BaserCMS contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version according to the information provided by the developer...