baserproject/basercms is vulnerable to cross-site scripting. The vulnerability exists due to insufficient sanitization of user-supplied data in user group management
feature which allows an attacker to inject and execute malicious javaScript on victim’s browser.
CPE | Name | Operator | Version |
---|---|---|---|
baserproject/basercms | le | 4.5.4 | |
baserproject/basercms | le | 4.5.4 |
basercms.net/security/JVN_53682526
github.com/baserproject/basercms/commit/b6f8a54e90dee51317eddf517b776fe8b4cd3ef6
github.com/baserproject/basercms/security/advisories/GHSA-395x-wv32-44v5
jvn.jp/en/jp/JVN53682526/index.html
jvndb.jvn.jp/en/contents/2022/JVNDB-2022-000094.html
www.cybersecurity-help.cz/vdb/SB2022112415