Lucene search

K
BasercmsBasercms

8 matches found

CVE
CVE
added 2023/03/23 8:15 p.m.101 views

CVE-2023-25654

baserCMS is a Content Management system. Prior to version 4.7.5, there is a Remote Code Execution (RCE) Vulnerability in the management system of baserCMS. Version 4.7.5 contains a patch.

9.8CVSS9.7AI score0.0126EPSS
CVE
CVE
added 2023/10/30 9:15 p.m.56 views

CVE-2023-43792

baserCMS is a website development framework. In versions 4.6.0 through 4.7.6, there is a Code Injection vulnerability in the mail form of baserCMS. As of time of publication, no known patched versions are available.

9.8CVSS7.4AI score0.0034EPSS
CVE
CVE
added 2023/10/30 7:15 p.m.54 views

CVE-2023-43649

baserCMS is a website development framework. Prior to version 4.8.0, there is a cross site request forgery vulnerability in the content preview feature of baserCMS. Version 4.8.0 contains a patch for this issue.

9.8CVSS6.8AI score0.00107EPSS
CVE
CVE
added 2023/03/23 8:15 p.m.52 views

CVE-2023-25655

baserCMS is a Content Management system. Prior to version 4.7.5, any file may be uploaded on the management system of baserCMS. Version 4.7.5 contains a patch.

9.8CVSS9.5AI score0.00254EPSS
CVE
CVE
added 2021/11/26 6:15 p.m.44 views

CVE-2021-41243

There is a Potential Zip Slip Vulnerability and OS Command Injection Vulnerability on the management system of baserCMS. Users with permissions to upload files may upload crafted zip files which may execute arbitrary commands on the host operating system. This is a vulnerability that needs to be ad...

9.1CVSS9.2AI score0.02383EPSS
CVE
CVE
added 2017/08/29 1:35 a.m.42 views

CVE-2017-10842

SQL injection vulnerability in the baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

9.8CVSS9.8AI score0.0067EPSS
CVE
CVE
added 2021/03/26 9:15 a.m.42 views

CVE-2021-20682

baserCMS versions prior to 4.4.5 allows a remote attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors.

9CVSS7.2AI score0.02722EPSS
CVE
CVE
added 2021/11/26 6:15 p.m.40 views

CVE-2021-41279

BaserCMS is an open source content management system with a focus on Japanese language support. In affected versions users with upload privilege may upload crafted zip files capable of path traversal on the host operating system. This is a vulnerability that needs to be addressed when the managemen...

9CVSS8.1AI score0.00323EPSS