CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46998 – baserCMS has a Cross-site Scripting (XSS) Vulnerability in Edit Email Form Settings Feature
https://notcve.org/view.php?id=CVE-2024-46998
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Edit Email Form Settings Feature. Version 5.1.2 fixes the issue. • https://basercms.net/security/JVN_98693329 https://github.com/baserproject/basercms/security/advisories/GHSA-p3m2-mj3j-j49x • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46996 – baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts Feature
https://notcve.org/view.php?id=CVE-2024-46996
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Blog posts feature. Version 5.1.2 fixes this issue. • https://basercms.net/security/JVN_00876083 https://github.com/baserproject/basercms/security/advisories/GHSA-66jv-qrm3-vvfg • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46995 – baserCMS has Cross-site Scripting Vulnerability in HTTP 400 Bad Request
https://notcve.org/view.php?id=CVE-2024-46995
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in HTTP 400 Bad Request. Version 5.1.2 fixes this issue. • https://basercms.net/security/JVN_06274755 https://github.com/baserproject/basercms/security/advisories/GHSA-mr7q-fv7j-jcgv • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46994 – baserCMS has Cross-site Scripting Vulnerability in Blog posts and Contents list Feature
https://notcve.org/view.php?id=CVE-2024-46994
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in Blog posts and Contents list Feature. Version 5.1.2 fixes this issue. • https://basercms.net/security/JVN_00876083 https://github.com/baserproject/basercms/security/advisories/GHSA-wrjc-fmfq-w3jr • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26128 – baserCMS Cross-site Scripting vulnerability in Content Management
https://notcve.org/view.php?id=CVE-2024-26128
baserCMS is a website development framework. Prior to version 5.0.9, there is a cross-site scripting vulnerability in the content management feature. Version 5.0.9 contains a fix for this vulnerability. baserCMS es un framework de desarrollo de sitios web. Antes de la versión 5.0.9, había una vulnerabilidad de cross site scripting en la función de administración de contenido. La versión 5.0.9 contiene una solución para esta vulnerabilidad. • https://basercms.net/security/JVN_73283159 https://github.com/baserproject/basercms/commit/18f426d63e752b4d22c40e9ea8d1f6e692ef601c https://github.com/baserproject/basercms/security/advisories/GHSA-jjxq-m8h3-4vw5 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •