Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
basercms basercms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-39325
BaserCMS is a content management system with a japanese language focus. In affected versions there is a cross-site scripting vulnerability on the management system of baserCMS. This is a vulnerability that needs to be addressed when the management system is used by an unspecified...
Basercms Basercms
356
VMScore
CVE-2018-0571
baserCMS (baserCMS 4.1.0.1 and previous versions versions, baserCMS 3.0.15 and previous versions versions) allows remote attackers with a site operator privilege to upload arbitrary files.
Basercms Basercms
445
VMScore
CVE-2018-0573
baserCMS (baserCMS 4.1.0.1 and previous versions versions, baserCMS 3.0.15 and previous versions versions) allows remote malicious users to bypass access restriction for a content to view a file which is uploaded by a site user via unspecified vectors.
Basercms Basercms
383
VMScore
CVE-2018-0574
Cross-site scripting vulnerability in baserCMS (baserCMS 4.1.0.1 and previous versions versions, baserCMS 3.0.15 and previous versions versions) allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Basercms Basercms
312
VMScore
CVE-2021-39136
baserCMS is an open source content management system with a focus on Japanese language support. In affected versions there is a cross-site scripting vulnerability in the file upload function of the management system of baserCMS. Users are advised to update as soon as possible. No...
Basercms Basercms
NA
CVE-2022-42486
Stored cross-site scripting vulnerability in User group management of baserCMS versions before 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
Basercms Basercms
312
VMScore
CVE-2020-15273
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registration. Arbitrary JavaScript may be executed by entering specific characters in the...
Basercms Basercms
578
VMScore
CVE-2020-15277
baserCMS before version 4.4.1 is affected by Remote Code Execution (RCE). Code may be executed by logging in as a system administrator and uploading an executable script file such as a PHP file. The Edit template component is vulnerable. The issue is fixed in version 4.4.1.
Basercms Basercms
668
VMScore
CVE-2017-10842
SQL injection vulnerability in the baserCMS 3.0.14 and previous versions, 4.0.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Basercms Basercms
570
VMScore
CVE-2017-10843
baserCMS version 3.0.14 and previous versions, 4.0.5 and previous versions allows remote malicious users to delete arbitrary files via unspecified vectors when the "File" field is being used in the mail form.
Basercms Basercms
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »