Information from baserCMS Users Community
Vulnerability ID:JVN#64869876
Title:Multiple vulnerabilities in baserCMS
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
There are multiple vulnerabilities in baserCMS, including a flaw in JavaScript input restrictions.
■ Target
baserCMS 4.4.4 and earlier versions
■ Vulnerable
(1) Insufficient JavaScript input restrictions in the page editing function
(2) OS command injection in the plug-in upload function
(3) Insufficient JavaScript input restrictions in the blog article editing function
■ Measures
You may need to do a update to the latest version of baserCMS
Please refer to the following page to reference for more information.
https://basercms.net/security/JVN64869876