Show filters
59 Total Results
Displaying 1-10 of 59
Sort by:
Attacker Value
Unknown

CVE-2024-46998

Disclosure Date: October 24, 2024 (last updated October 29, 2024)
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Edit Email Form Settings Feature. Version 5.1.2 fixes the issue.
Attacker Value
Unknown

CVE-2024-46996

Disclosure Date: October 24, 2024 (last updated October 29, 2024)
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Blog posts feature. Version 5.1.2 fixes this issue.
Attacker Value
Unknown

CVE-2024-46995

Disclosure Date: October 24, 2024 (last updated October 29, 2024)
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in HTTP 400 Bad Request. Version 5.1.2 fixes this issue.
Attacker Value
Unknown

CVE-2024-46994

Disclosure Date: October 24, 2024 (last updated October 29, 2024)
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in Blog posts and Contents list Feature. Version 5.1.2 fixes this issue.
Attacker Value
Unknown

CVE-2024-26128

Disclosure Date: February 22, 2024 (last updated December 21, 2024)
baserCMS is a website development framework. Prior to version 5.0.9, there is a cross-site scripting vulnerability in the content management feature. Version 5.0.9 contains a fix for this vulnerability.
Attacker Value
Unknown

CVE-2023-51450

Disclosure Date: February 22, 2024 (last updated December 19, 2024)
baserCMS is a website development framework. Prior to version 5.0.9, there is an OS Command Injection vulnerability in the site search feature of baserCMS. Version 5.0.9 contains a fix for this vulnerability.
Attacker Value
Unknown

CVE-2023-44379

Disclosure Date: February 22, 2024 (last updated December 19, 2024)
baserCMS is a website development framework. Prior to version 5.0.9, there is a cross-site scripting vulnerability in the site search feature. Version 5.0.9 contains a fix for this vulnerability.
Attacker Value
Unknown

CVE-2023-43792

Disclosure Date: October 30, 2023 (last updated November 07, 2023)
baserCMS is a website development framework. In versions 4.6.0 through 4.7.6, there is a Code Injection vulnerability in the mail form of baserCMS. As of time of publication, no known patched versions are available.
Attacker Value
Unknown

CVE-2023-43649

Disclosure Date: October 30, 2023 (last updated November 07, 2023)
baserCMS is a website development framework. Prior to version 4.8.0, there is a cross site request forgery vulnerability in the content preview feature of baserCMS. Version 4.8.0 contains a patch for this issue.
Attacker Value
Unknown

CVE-2023-43648

Disclosure Date: October 30, 2023 (last updated November 07, 2023)
baserCMS is a website development framework. Prior to version 4.8.0, there is a Directory Traversal Vulnerability in the form submission data management feature of baserCMS. Version 4.8.0 contains a patch for this issue.