Lucene search
Veracode Vulnerability DatabaseVERACODE:33130HistoryNov 29, 2021 - 4:18 a.m.
OS Command Injection
2021-11-2904:18:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
50.6%
baserproject/basercms is vulnerable to OS command injection. An attacker can upload malicious zip files through the upload functionality in the library, leading to the path traversal on the host operating system
| CPE | Name | Operator | Version |
|---|---|---|---|
| baserproject/basercms | eq | 4.4.8 | |
| baserproject/basercms | eq | 4.4.8 |
Related
cnvd
cnvd
BaserCMS path traversal vulnerability
2021-11-30 00:00:00
osv
osv
Potential Zip Slip Vulnerability in baserCMS
2021-12-01 18:29:32
CVE-2021-41279
2021-11-26 18:15:07
github
github
Potential Zip Slip Vulnerability in baserCMS
2021-12-01 18:29:32
cvelist
cvelist
CVE-2021-41279 Zip Slip Vulnerability in BaserCMS
2021-11-26 18:00:11
cve
cve
CVE-2021-41279
2021-11-26 18:15:07
prion
prion
Path traversal
2021-11-26 18:15:00
nvd
nvd
CVE-2021-41279
2021-11-26 18:15:07
jvn
jvn
JVN#81376414: Multiple vulnerabilities in baserCMS
2021-11-26 00:00:00