baserproject/basercms is vulnerable to cross-site scripting. The vulnerability exists due to insufficient sanitization of user-supplied data in the permission settings
feature which allows an attacker to inject and execute malicious JavaScript on the victim’s browser.
basercms.net/security/JVN_53682526
github.com/baserproject/basercms/commit/b6f8a54e90dee51317eddf517b776fe8b4cd3ef6
github.com/baserproject/basercms/security/advisories/GHSA-395x-wv32-44v5
jvn.jp/en/jp/JVN53682526/index.html
jvndb.jvn.jp/en/contents/2022/JVNDB-2022-000094.html
www.cybersecurity-help.cz/vdb/SB2022112415