CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Basercms: >> Basercms >> 1.6.12 Security Vulnerabilities

CVE-2012-1248

app/config/core.php in baserCMS 1.6.15 and earlier does not properly handle installations in shared-hosting environments, which allows remote attackers to hijack sessions by leveraging administrative access to a different domain.

CVSS Score

5.1

EPSS Score

0.012

Published

2012-05-15

CVE-2011-2673

Cross-site scripting (XSS) vulnerability in BaserCMS before 1.6.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.003

Published

2011-10-02

Page 4

Vulnerabilities

Vulnerable Software

Basercms: >> Basercms >> 1.6.12 Security Vulnerabilities

Products

Pricing

Contact Us