baserproject/basercms vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the baserproject/basercms package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
OS Command Injection

<5.0.10
  • M
Cross-site Scripting (XSS)

<5.0.10
  • M
Cross-site Scripting

<5.0.10
  • M
Cross-site Scripting (XSS)

<4.8.0
  • M
Path Traversal

<4.8.0
  • M
Cross-site Request Forgery (CSRF)

<4.8.0
  • M
Cross-site Scripting (XSS)

<4.8.0
  • M
Code Injection

>=4.6.0, <4.8.0
  • H
Arbitrary File Upload

<4.1.4
  • C
SQL Injection

<3.0.15 >=4.0.0, <4.0.6
  • H
Access Restriction Bypass

<3.0.15 >=4.0.0, <4.0.6
  • H
Access Restriction Bypass

<3.0.11
  • H
Access Restriction Bypass

<3.0.11
  • M
Cross-site Scripting (XSS)

<3.0.11
  • H
Cross-site Request Forgery (CSRF)

<3.0.11
  • H
Arbitrary Code Injection

<3.0.15 >=4.0.0, <4.0.6
  • M
Arbitrary File Upload

<5.0.0-beta1
  • M
Arbitrary File Upload

<5.0.0-beta1
  • L
Cross-site Scripting (XSS)

<5.0.0-beta1
  • M
Cross-site Scripting (XSS)

<5.0.0-beta1
  • M
Cross-site Scripting (XSS)

<5.0.0-beta1
  • L
Arbitrary File Write via Archive Extraction (Zip Slip)

<4.5.4
  • C
OS Command Injection

<4.5.4
  • H
Cross-site Scripting (XSS)

>=0.0.0, <4.5.4
  • M
Cross-site Scripting (XSS)

<4.4.5
  • H
Command Injection

<4.4.5
  • M
Cross-site Scripting (XSS)

<4.4.5
  • H
Cross-site Scripting (XSS)

<4.4.1
  • M
Cross-site Scripting (XSS)

<4.4.1
  • H
Cross-site Scripting (XSS)

>=3.0.10, <4.3.7
  • H
Cross-site Scripting (XSS)

>=4.0.0, <4.3.7
  • H
Cross-site Scripting (XSS)

>=4.0.0, <4.3.7
  • M
Access Restriction Bypass

<3.0.16 >=4.0.0, <4.1.1
  • M
Access Restriction Bypass

<3.0.16 >=4.0.0, <4.1.1
  • M
Arbitrary File Upload

<3.0.16 >=4.0.0, <4.1.1
  • M
Cross-site Scripting (XSS)

<3.0.16 >=4.0.0, <4.1.1
  • H
Arbitrary Code Execution

<3.0.16 >=4.0.0, <4.1.1
  • M
Cross-site Scripting (XSS)

<3.0.16 >=4.0.0, <4.1.1
  • H
Access Restriction Bypass

<3.0.16 >=4.0.0, <4.1.1