CVE-2020-15154 – baserCMS 4.3.6 and earlier is affected by Cross Site Scripting (XSS) via arbitrary script …

28 August 2020

Vuln ID: CVE-2020-15154

Published: 2020-08-28 21:15:11Z

Description: baserCMS 4.3.6 and earlier is affected by Cross Site Scripting (XSS) via arbitrary script execution. Admin access is required to exploit this vulnerability. The affected components are: content_fields.php, content_info.php, content_options.php, content_related.php, index_list_tree.php, jquery.bcTree.js. The issue is fixed in version 4.3.7.

Source: NVD.NIST.GOV

Date:

28 August 2020

Categorie(s):

NVD

Tag(s):

NVD

US Official Warns a Cell Network Flaw Is Being Exploited for Spying18 May 2024
How two brothers allegedly swiped $25M in a 12-second Ethereum heist18 May 2024
How to revamp your cybersecurity in the middle of the chaos18 May 2024
Leveling the cybersecurity playing field18 May 2024
Automated pentesting in the cloud18 May 2024