6 matches found
EUVD-2022-3847
Malicious code in bioql PyPI...
GHSA-FX2M-5M9V-JHGP XSS in baserCMS before 4.1.4
An issue was discovered in baserCMS before 4.1.4. In the Register New Category feature of the Upload menu, the category name can be used for XSS via the dataUploaderCategoryname parameter to an admin/uploader/uploadercategories/edit URI...
BaserCMS Cross-Site Scripting Vulnerability (CNVD-2019-09273)
BaserCMS is an enterprise cms. 4.1.4 A cross-site scripting vulnerability exists in the category name of the "Register New Category" feature in the "Upload" menu of BaserCMS before 4.1.4, which can be exploited via the dataUploaderCategoryname parameter of the admin/uploader/uploadercategories/ed...
CVE-2018-18943
An issue was discovered in baserCMS before 4.1.4. In the Register New Category feature of the Upload menu, the category name can be used for XSS via the dataUploaderCategoryname parameter to an admin/uploader/uploadercategories/edit URI...
Design/Logic Flaw
An issue was discovered in baserCMS before 4.1.4. In the Register New Category feature of the Upload menu, the category name can be used for XSS via the dataUploaderCategoryname parameter to an admin/uploader/uploadercategories/edit URI...
CVE-2018-18943
An issue was discovered in baserCMS before 4.1.4. In the Register New Category feature of the Upload menu, the category name can be used for XSS via the dataUploaderCategoryname parameter to an admin/uploader/uploadercategories/edit URI...