Lucene search
Veracode Vulnerability DatabaseVERACODE:31824HistoryAug 26, 2021 - 3:01 a.m.
Cross-site Scripting (XSS)
2021-08-2603:01:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
cross-site scripting
vulnerability
file upload function
baserproject/basercms
management system
malicious javascript
EPSS
0.001
Percentile
33.0%
baserproject/basercms is vulnerable to cross-site scripting. The file upload function on the management system does not escape user-provided data, allowing an attacker to inject and execute malicious javascript.
Related
cve
cve
CVE-2021-39136
2021-08-25 18:15:07
osv
osv
Cross-site scripting vulnerability in file upload
2021-08-30 16:18:59
CVE-2021-39136
2021-08-25 18:15:07
jvn
jvn
JVN#14134801: baserCMS vulnerable to cross-site scripting
2021-08-27 00:00:00
cvelist
cvelist
CVE-2021-39136 Cross-site scripting vulnerability in file upload
2021-08-25 18:05:13
github
github
Cross-site scripting vulnerability in file upload
2021-08-30 16:18:59
cnvd
cnvd
BaserCMS Cross-Site Scripting Vulnerability (CNVD-2021-93919)
2021-08-26 00:00:00
prion
prion
Cross site scripting
2021-08-25 18:15:00
nvd
nvd
CVE-2021-39136
2021-08-25 18:15:07