📦 Basercms

CVE-2023-25654 is a critical remote code execution vulnerability in baserCMS management systems. Attackers can execute arbitrary code on affected servers, potentially taking full control. All baserCMS...

CVE-2021-41243 is a critical vulnerability in baserCMS that combines Zip Slip and OS command injection flaws. Authenticated users with file upload permissions can upload malicious zip files to execute...

baserCMS versions before 5.1.2 contain a cross-site scripting (XSS) vulnerability in the Edit Email Form Settings feature. This allows attackers to inject malicious scripts that execute in users' brow...

CVE-2021-39136 is a cross-site scripting (XSS) vulnerability in baserCMS's file upload function within the management system. Attackers can inject malicious scripts that execute when administrators vi...

This vulnerability allows remote attackers with administrative privileges in baserCMS to execute arbitrary operating system commands. It affects baserCMS installations prior to version 4.4.5. Attacker...

baserCMS versions before 5.1.2 contain a cross-site scripting (XSS) vulnerability in HTTP 400 Bad Request handling. This allows attackers to inject malicious scripts that execute in users' browsers wh...