CVE-2018-0574
MEDIUM6.1EPSS 0.26%XSS in baserCMS
Published: 5/14/2022Modified: 2/16/2024
Also known as:GHSA-6qjv-43mf-rgrh
Description
Cross-site scripting vulnerability in baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected packages (1)
- Packagist/baserproject/basercms>= 4.0.0, <= 4.1.0.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |