2 matches found
CVE-2020-15273
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registration. Arbitrary JavaScript may be executed by entering specific characters in the account that can...
CVE-2020-15273
baserCMS prior to 4.4.1 is vulnerable to Cross-Site Scripting (XSS) via specific crafted inputs in features such as Edit feed settings, Edit widget area, Sub site new registration, and New category registration. The issue can execute arbitrary JavaScript in accounts with access to the file upload...