| CVE-2017-10842 |
critical |
9.8 |
9.8 |
9y ago |
baserCMS SQL Injection vulnerability |
|
| CVE-2017-10844 |
high |
8.8 |
8.8 |
9y ago |
Code Injection in baserCMS |
|
| CVE-2016-4881 |
high |
8.8 |
8.8 |
9y ago |
CSRF in baserCMS 3.0.10 and earlier |
|
| CVE-2016-4879 |
high |
8.8 |
8.8 |
9y ago |
CSRF in baserCMS 3.0.10 and earlier |
|
| CVE-2016-4878 |
high |
8.8 |
8.8 |
9y ago |
baserCMS Cross Site Request Forgery vulnerability |
|
| CVE-2017-10843 |
high |
7.5 |
7.5 |
9y ago |
Arbitrary file delete in baserCMS |
|
| CVE-2015-5640 |
medium |
— |
6.5 |
11y ago |
baserCMS Access Control Bypass |
|
| CVE-2016-4880 |
medium |
5.4 |
5.4 |
9y ago |
baserCMS Cross-site Scripting vulnerability |
|
| CVE-2011-2674 |
medium |
— |
4.9 |
15y ago |
BaserCMS privilege escallation |
|
| CVE-2026-32734 |
unknown |
— |
— |
2mo ago |
baserCMS is Vulnerable to Cross-site Scripting |
|
| CVE-2026-30940 |
unknown |
— |
— |
2mo ago |
baserCMS Path Traversal Leads to Arbitrary File Write and RCE via Theme File API |
|
| CVE-2026-30880 |
unknown |
— |
— |
2mo ago |
baserCMS has OS command injection vulnerability in installer |
|
| CVE-2026-30879 |
unknown |
— |
— |
2mo ago |
baserCMS has a cross-site scripting vulnerability in blog posts |
|
| CVE-2026-30878 |
unknown |
— |
— |
2mo ago |
baserCMS has Mail Form Acceptance Bypass via Public API |
|
| CVE-2026-30877 |
unknown |
— |
— |
2mo ago |
baserCMS Update Functionality Vulnerable to OS Command Injection |
|
| CVE-2026-27697 |
unknown |
— |
— |
2mo ago |
baserCMS has an SQL injection vulnerability in its blog post functionality |
|
| CVE-2026-21861 |
unknown |
— |
— |
2mo ago |
baserCMS has OS Command Injection Leading to Remote Code Execution (RCE) |
|
| CVE-2025-32957 |
unknown |
— |
— |
2mo ago |
baserCMS has Unsafe File Upload Leading to Remote Code Execution (RCE) |
|
| CVE-2024-46998 |
unknown |
— |
— |
2y ago |
baserCMS has a Cross-site Scripting (XSS) Vulnerability in Edit Email Form Settings Feature |
|
| CVE-2024-46996 |
unknown |
— |
— |
2y ago |
baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts Feature |
|
| CVE-2024-46995 |
unknown |
— |
— |
2y ago |
baserCMS has a Cross-site Scripting (XSS) Vulnerability in HTTP 400 Bad Request |
|
| CVE-2024-46994 |
unknown |
— |
— |
2y ago |
baserCMS has a Cross-site Scripting (XSS) Vulnerability in Blog posts and Contents list Feature |
|
| CVE-2023-44379 |
unknown |
— |
— |
2y ago |
baserCMS Cross-site Scripting vulnerability in Site search Feature |
|
| CVE-2023-51450 |
unknown |
— |
— |
2y ago |
baserCMS OS command injection vulnerability in Installer |
|
| CVE-2024-26128 |
unknown |
— |
— |
2y ago |
baserCMS Cross-site Scripting vulnerability in Content Management |
|
| CVE-2023-43792 |
unknown |
— |
— |
3y ago |
baserCMS Code Injection Vulnerability in Mail Form Feature |
|
| CVE-2023-43649 |
unknown |
— |
— |
3y ago |
baserCMS CSRF vulnerability in Content preview Feature |
|
| CVE-2023-43648 |
unknown |
— |
— |
3y ago |
baserCMS Directory Traversal vulnerability in Form submission data management Feature |
|
| CVE-2023-43647 |
unknown |
— |
— |
3y ago |
baserCMS Cross-site Scripting vulnerability in File upload Feature |
|
| CVE-2023-29009 |
unknown |
— |
— |
3y ago |
baserCMS Cross-site Scripting Vulnerability in Favorites Feature |
|
| CVE-2023-25655 |
unknown |
— |
— |
3y ago |
baserCMS allows any file to be uploaded |
|
| CVE-2023-25654 |
unknown |
— |
— |
3y ago |
baserCMS File Uploader Remote Code Execution (RCE) vulnerability |
|
| CVE-2022-41994 |
unknown |
— |
— |
4y ago |
baserCMS vulnerable to stored Cross-site Scripting |
|
| CVE-2022-42486 |
unknown |
— |
— |
4y ago |
baserCMS vulnerable to stored Cross-site Scripting |
|
| CVE-2022-39325 |
unknown |
— |
— |
4y ago |
baserproject/basercms vulnerable to cross-site scripting (XSS) vulnerability |
|
| CVE-2018-0569 |
unknown |
— |
— |
4y ago |
OS Command Injection in baserCMS |
|
| CVE-2018-0575 |
unknown |
— |
— |
4y ago |
Sensitive Data Exposure in baserCMS |
|
| CVE-2018-0574 |
unknown |
— |
— |
4y ago |
XSS in baserCMS |
|
| CVE-2018-0571 |
unknown |
— |
— |
4y ago |
baserCMS arbitrary file upload vulnerability |
|
| CVE-2018-0570 |
unknown |
— |
— |
4y ago |
XSS in baserCMS |
|
| CVE-2018-18943 |
unknown |
— |
— |
4y ago |
XSS in baserCMS before 4.1.4 |
|
| CVE-2018-0572 |
unknown |
— |
— |
4y ago |
baserCMS vulnerable to Access Control Bypass |
|
| CVE-2018-0573 |
unknown |
— |
— |
4y ago |
baserCMS Access Control Bypass |
|
| CVE-2018-18942 |
unknown |
— |
— |
4y ago |
RCE in baserCMS before 4.1.4 |
|
| CVE-2021-41243 |
unknown |
— |
— |
5y ago |
OS Command Injection Vulnerability and Potential Zip Slip Vulnerability in baserCMS |
|
| CVE-2021-41279 |
unknown |
— |
— |
5y ago |
Potential Zip Slip Vulnerability in baserCMS |
|
| CVE-2021-39136 |
unknown |
— |
— |
5y ago |
Cross-site scripting vulnerability in file upload |
|
| CVE-2021-20683 |
unknown |
— |
— |
5y ago |
Cross-site Scripting (XSS) in baserCMS |
|
| CVE-2021-20682 |
unknown |
— |
— |
5y ago |
OS Command Injection in baserCMS |
|
| CVE-2021-20681 |
unknown |
— |
— |
5y ago |
Cross-site Scripting (XSS) in baserCMS |
|
| CVE-2020-15273 |
unknown |
— |
— |
6y ago |
Edit feed settings and others, Cross Site Scripting(XSS) Vulnerability in Latest Release 4.4.0 |
|
| CVE-2020-15276 |
unknown |
— |
— |
6y ago |
Blog comment posting, Cross Site Scripting(XSS) Vulnerability in Latest Release 4.4.0 |
|
| CVE-2020-15277 |
unknown |
— |
— |
6y ago |
Edit template, Remote Code Execution (RCE) Vulnerability in Latest Release 4.4.0 |
|
| CVE-2020-15159 |
unknown |
— |
— |
6y ago |
Cross Site Scripting and RCE in baserCMS |
|
| CVE-2020-15155 |
unknown |
— |
— |
6y ago |
Cross Site Scripting(XSS) Vulnerability in Latest Release 4.3.6 Site basic settings |
|
| CVE-2020-15154 |
unknown |
— |
— |
6y ago |
Cross Site Scripting in baserCMS |
|