CVE-2022-39325
Last modified
CVE-2022-39325 is a medium-severity vulnerability rated 6.1/10 on the CVSS scale. BaserCMS is a content management system with a japanese language focus. In affected versions there is a cross-site scripting vulnerability on the management system of baserCMS. EPSS estimates a 0.55% chance of exploitation in the next 30 days.
Description
BaserCMS is a content management system with a japanese language focus. In affected versions there is a cross-site scripting vulnerability on the management system of baserCMS. This is a vulnerability that needs to be addressed when the management system is used by an unspecified number of users. Users of baserCMS are advised to upgrade as soon as possible. There are no known workarounds for this vulnerability.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Basercms | Basercms | < 4.7.2 |
References
- https://basercms.net/security/JVN_53682526Vendor Advisory
- https://github.com/baserproject/basercms/commit/b6f8a54e90dee51317eddf517b776fe8b4cd3ef6Patch, Third Party Advisory
- https://github.com/baserproject/basercms/security/advisories/GHSA-395x-wv32-44v5Third Party Advisory
- https://basercms.net/security/JVN_53682526Vendor Advisory
- https://github.com/baserproject/basercms/commit/b6f8a54e90dee51317eddf517b776fe8b4cd3ef6Patch, Third Party Advisory
- https://github.com/baserproject/basercms/security/advisories/GHSA-395x-wv32-44v5Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-39325?
How severe is CVE-2022-39325?
How do I fix CVE-2022-39325?
Are you affected by CVE-2022-39325?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST