3 matches found
CVE-2022-42486
CVE-2022-42486 is a stored XSS vulnerability in baserCMS, affecting versions prior to 4.7.2. An authenticated administrator can inject arbitrary script via the User group management feature. Impact described in connected sources includes client-side script execution risk; no remote code execution...
CVE-2022-42486
Stored cross-site scripting vulnerability in User group management of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...
GHSA-395X-WV32-44V5 baserproject/basercms vulnerable to cross-site scripting (XSS) vulnerability
There is a cross-site scripting vulnerability on the management system of baserCMS. This is a vulnerability that needs to be addressed when the management system is used by an unspecified number of users. If you are eligible, please update to the new version as soon as possible. Target baserCMS...