CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Veracode•added 2024/02/23 1:47 p.m.•13 views

Cross Site Scripting (XSS)

baserproject/basercms is vulnerable to Cross Site Scripting XSS. The vulnerability is due to inadequate input validation, allowing attackers to inject malicious scripts into the search functionality...

6.1CVSS6.6AI score0.00622EPSS

Exploits0References3Affected Software1

Veracode•added 2022/12/01 11:34 a.m.•11 views

Cross-site Scripting (XSS)

baserproject/basercms is vulnerable to cross-site scripting. The vulnerability exists due to insufficient sanitization of user-supplied data in user group management feature which allows an attacker to inject and execute malicious javaScript on victim's browser...

4.8CVSS5.3AI score0.00144EPSS

Exploits0References6Affected Software1

Veracode•added 2022/11/28 8:0 a.m.•16 views

Cross-site Scripting (XSS)

baserproject/basercms is vulnerable to cross-site scripting. The vulnerability exists when the management system is used by an unspecified number of users which allows an attacker to inject and execute malicious JavaScript...

6.1CVSS6AI score0.00687EPSS

Exploits0References5Affected Software1

Veracode•added 2021/11/29 4:18 a.m.•14 views

OS Command Injection

baserproject/basercms is vulnerable to OS command injection. An attacker can upload malicious zip files through the upload functionality in the library, leading to the path traversal on the host operating system...

8.8CVSS2.8AI score0.00438EPSS

Exploits0References3Affected Software1

Veracode•added 2021/08/26 3:1 a.m.•14 views

Cross-site Scripting (XSS)

baserproject/basercms is vulnerable to cross-site scripting. The file upload function on the management system does not escape user-provided data, allowing an attacker to inject and execute malicious javascript...

8.7CVSS3AI score0.0054EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by