Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist baserproject/basercms Security Advisories

Loading...
Moderate
GSA_kwCzR0hTQS02NmMyLXA4cmgtcXg4N84AA5dj
baserCMS Cross-site Scripting vulnerability in Site search Feature
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS03N2ZjLTRjdjUtaG1mcs4AA5di
baserCMS OS command injection vulnerability in Installer
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.4
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS1qanhxLW04aDMtNHZ3Nc4AA5dh
baserCMS Cross-site Scripting vulnerability in Content Management
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS12cm02LWM4NzgtZnBxNs4AA2uY
baserCMS Code Injection Vulnerability in Mail Form Feature
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS1mdzl4LWNxanEtN2p4Nc4AA2uX
baserCMS CSRF vulnerability in Content preview Feature
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 2.8
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS1obXFqLWd2Mm0taHE1Nc4AA2uW
baserCMS Directory Traversal vulnerability in Form submission data management Feature
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS1nZ2o0LTc4cm0tNnhnds4AA2uV
baserCMS Cross-site Scripting vulnerability in File upload Feature
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS04dnF4LXBycTQtcnFycc4AA2uU
baserCMS Cross-site Scripting Vulnerability in Favorites Feature
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: 9 months ago
Critical
GSA_kwCzR0hTQS1tZnZnLXF3Y3ctcXZjOM4AAyQi
baserCMS allows any file to be uploaded
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS1oNGNjLWZ4cHAtcGd3Oc4AAyQh
baserCMS File Uploader Remote Code Execution (RCE) vulnerability
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS12eHdmLTc5Y2gtZjdmN84AAwMM
baserCMS vulnerable to stored Cross-site Scripting
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS03dzJ2LTM1ajMteHJtOc4AAwMO
baserCMS vulnerable to stored Cross-site Scripting
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0zOTV4LXd2MzItNDR2Nc4AAwEE
baserproject/basercms vulnerable to cross-site scripting (XSS) vulnerability
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 2.8
Published: over 1 year ago
High
GSA_kwCzR0hTQS00NnZtLXJ3cmYtanJ4bc4AAbmb
CSRF in baserCMS 3.0.10 and earlier
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
High
GSA_kwCzR0hTQS1mZzUyLXJjMzYtanA0M84AAbmr
baserCMS Cross Site Request Forgery vulnerability
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1teGZ2LWM4cDgtcXc1aM4AAbmf
baserCMS Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02cWp2LTQzbWYtcmdyaM4AAWdL
XSS in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05OTRnLTc0Z3EtNXFwcs4AAWdE
XSS in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS13OTM1LXA3bWcteGM5Ns4AAWdM
Sensitive Data Exposure in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: about 2 years ago
High
GSA_kwCzR0hTQS02ajNwLXZycGgtajdxcc4AAWdG
OS Command Injection in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zbWNwLTZydjYtYzY5Z84AAWdF
baserCMS arbitrary file upload vulnerability
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 2.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1meDJtLTVtOXYtamhncM4AAUnn
XSS in baserCMS before 4.1.4
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: about 2 years ago
High
GSA_kwCzR0hTQS02OWd3LXY1cGgtNnZ4cc4AAT7T
Code Injection in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1qYzk0LXdwNTktcHE0Zs4AAT66
baserCMS SQL Injection vulnerability
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zM2ZxLXFtNG0tY2p3M84AASit
baserCMS Access Control Bypass
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: about 2 years ago
High
GSA_kwCzR0hTQS1tamo5LTMzajgtcGZ3aM4AASh7
baserCMS vulnerable to Access Control Bypass
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: about 2 years ago
High
GSA_kwCzR0hTQS14NzN4LTdnbXgtdzgzNc4AAR7W
Arbitrary file delete in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: about 2 years ago
High
GSA_kwCzR0hTQS0zOTdnLTRqcGotNDR4Z84AAQtt
CSRF in baserCMS 3.0.10 and earlier
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
High
GSA_kwCzR0hTQS1yamMyLXg1M3ItNmM5cs3-JQ
RCE in baserCMS before 4.1.4
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02d3I2LTU0bXctbXZocs3vlA
BaserCMS privilege escallation
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12OWdmLTk4dnItbWdwMs3vgw
baserCMS Access Control Bypass
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS03cnBjLTltODgtY2Y5d80YPQ
OS Command Injection Vulnerability and Potential Zip Slip Vulnerability in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.5
Published: over 2 years ago
High
GSA_kwCzR0hTQS00eDJmLTU0d3ItNGhqZ80YPg
Potential Zip Slip Vulnerability in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnanItNjMyeC1xcHAz
Cross-site scripting vulnerability in file upload
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: almost 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5dzgtaHE5Mi12Mzlt
Cross-site Scripting (XSS) in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: about 3 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWczOXEtZjRybS04NXg0
OS Command Injection in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: about 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0cDUteDlmOS12dnB4
Cross-site Scripting (XSS) in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 3.3
Published: about 3 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwd3ctNGpmNC00aHg4
Edit feed settings and others, Cross Site Scripting(XSS) Vulnerability in Latest Release 4.4.0
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: over 3 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3NXEtajlwNC0zdnhn
Blog comment posting, Cross Site Scripting(XSS) Vulnerability in Latest Release 4.4.0
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: over 3 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZmbXYtcTI2OS01NWN3
Edit template, Remote Code Execution (RCE) Vulnerability in Latest Release 4.4.0
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: over 3 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY3M3gtZjV3eC1meHB3
Cross Site Scripting and RCE in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: almost 4 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyM20tajZ4NS00OG0z
Cross Site Scripting(XSS) Vulnerability in Latest Release 4.3.6 Site basic settings
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: almost 4 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNweGMtNjdyYy1jNzc1
Cross Site Scripting in baserCMS
Ecosystems: packagist
Packages: baserproject/basercms
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: almost 4 years ago
Statistics
Advisories: 19,517
Packages: 8,615
Repositories: 2
Ecosystems: 12
Filter by Package
moodle/moodle 342 magento/community-edition 204 typo3/cms 174 pimcore/pimcore 117 dolibarr/dolibarr 111 typo3/cms-core 106 phpmyadmin/phpmyadmin 92 microweber/microweber 91 drupal/core 91 silverstripe/framework 85 drupal/drupal 76 thorsten/phpmyfaq 70 symfony/symfony 64 librenms/librenms 54 concrete5/concrete5 52 shopware/platform 48 baserproject/basercms 43 craftcms/cms 40 showdoc/showdoc 40 intelliants/subrion 39 froxlor/froxlor 37 nilsteampassnet/teampass 37 shopware/core 36 zendframework/zendframework1 34 snipe/snipe-it 33 mautic/core 30 shopware/shopware 30 getgrav/grav 29 centreon/centreon 27 prestashop/prestashop 26 mediawiki/core 24 magento/core 24 simplesamlphp/simplesamlphp 23 remdex/livehelperchat 23 grumpydictator/firefly-iii 23 pocketmine/pocketmine-mp 23 zendframework/zendframework 23 getkirby/cms 22 contao/core-bundle 21 tribalsystems/zenario 20 laravel/framework 19 contao/contao 18 cockpit-hq/cockpit 18 forkcms/forkcms 18 genix/cms 17 symfony/security 17 topthink/framework 17 cakephp/cakephp 17 ezsystems/ezpublish-kernel 17 francoisjacquet/rosariosis 17 opencart/opencart 16 yetiforce/yetiforce-crm 16 openmage/magento-lts 15 october/system 15 smarty/smarty 15 ec-cube/ec-cube 15 phpmailer/phpmailer 14 symfony/security-http 14 silverstripe/cms 14 typo3/cms-backend 14 codeigniter4/framework 13 impresscms/impresscms 13 lavalite/cms 13 elefant/cms 13 bolt/bolt 13 phpmyfaq/phpmyfaq 12 phpbb/phpbb 12 studio-42/elfinder 12 dompdf/dompdf 12 sylius/sylius 12 feehi/cms 11 feehi/feehicms 11 symfony/http-foundation 11 ezsystems/ezplatform-kernel 11 pimcore/admin-ui-classic-bundle 11 tinymce/tinymce 11 tinymce 11 TinyMCE 11 wwbn/avideo 11 ssddanbrown/bookstack 10 nukeviet/nukeviet 10 admidio/admidio 10 ezsystems/ezpublish-legacy 10 pagekit/pagekit 10 wallabag/wallabag 10 yiisoft/yii2 10 alextselegidis/easyappointments 9 contao/core 9 concrete5/core 9 october/october 9 kevinpapst/kimai2 9 funadmin/funadmin 9 croogo/croogo 8 codiad/codiad 8 composer/composer 8 gilacms/gila 8 statamic/cms 8 october/cms 8 facturascripts/facturascripts 8 sulu/sulu 8 pimcore/customer-management-framework-bundle 8 silverstripe/admin 8 silverstripe/graphql 8 pterodactyl/panel 7 october/backend 7 ezsystems/ezplatform-admin-ui 7 passbolt/passbolt_api 7 wpglobus/wpglobus 7 mantisbt/mantisbt 7 flarum/core 7 symfony/http-kernel 7 gleez/cms 6 backdrop/backdrop 6 oro/platform 6 zoujingli/thinkadmin 6 guzzlehttp/guzzle 6 nystudio107/craft-seomatic 6 dweeves/magmi 6 yourls/yourls 6 vrana/adminer 6 directmailteam/direct-mail 6 bagisto/bagisto 6 in2code/femanager 6 yiisoft/yii2-dev 6 phpseclib/phpseclib 6 twig/twig 5 phpxmlrpc/phpxmlrpc 5 symfony/security-core 5 woocommerce/woocommerce 5 elgg/elgg 5 neos/flow 5 neos/neos 5 illuminate/database 5 automad/automad 5 cachethq/cachet 5 typo3/cms-install 5 phpservermon/phpservermon 5 simplesamlphp/saml2 5 pear/archive_tar 5 typo3/flow 5 bottelet/flarepoint 5 silverstripe/assets 5 codeigniter/framework 5 ibexa/core 5 anchorcms/anchor-cms 5 billz/raspap-webgui 5 gugoan/economizzer 5 thinkcmf/thinkcmf 5 shopware/storefront 4 ezsystems/ezplatform 4 codeigniter4/shield 4 appwrite/server-ce 4 kimai/kimai 4 bref/bref 4 wintercms/winter 4 modx/revolution 4 idno/known 4 evolutioncms/evolution 4 symfony/security-bundle 4 notrinos/notrinos-erp 4 pyrocms/pyrocms 4 bytefury/crater 4 adodb/adodb-php 4 zendframework/zendopenid 4 spatie/browsershot 4 oro/commerce 4 magento/product-community-edition 4 wp-premium/gravityforms 4 sylius/resource-bundle 4 typo3/cms-frontend 4 friendsofsymfony/user-bundle 4 shopxo/shopxo 4 typo3/html-sanitizer 4 zendframework/zend-http 3 buddypress/buddypress 3 ckeditor4 3 reportico-web/reportico 3 facade/ignition 3 phenx/php-svg-lib 3 joomla/framework 3 enhavo/enhavo-app 3 bbpress/bbpress 3 yiisoft/yii 3 symfony/form 3 amphp/http-client 3 zencart/zencart 3 phpoffice/phpspreadsheet 3 flarum/framework 3 doctrine/orm 3 rudloff/alltube 3 froala/wysiwyg-editor 3 apache-solr-for-typo3/solr 3 icecoder/icecoder 3 pixelfed/pixelfed 3 zendframework/zend-diactoros 3 limesurvey/limesurvey 3 verbb/comments 3 illuminate/auth 3 prestashop/productcomments 3 joomla/joomla-cms 3