Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

basecamp — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting basecamp. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Basecamp is a project management and team collaboration platform that organizes tasks, files, and communication. Historically, it has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws. The platform has experienced security incidents, such as a 2021 data breach exposing user data due to an API vulnerability. Basecamp's security posture has shown inconsistencies, with multiple CVEs addressing authentication and input validation issues. While it remains widely used for team coordination, its security history suggests potential risks for organizations relying on it for sensitive project management.

Top products by basecamp: trix google_sign_in
CVE IDTitleCVSSSeverityPublished
CVE-2025-58067 Basecamp's Google Sign-In for Rails allowed redirects to protocol-relative URI — google_sign_inCWE-601 4.2 Medium2025-08-29
CVE-2025-57821 Basecamp's Google Sign-In for Rails allowed redirects to a malformed URL — google_sign_inCWE-601 4.2 Medium2025-08-27
CVE-2025-46812 Trix vulnerable to Cross-site Scripting on copy & paste — trixCWE-79 6.1AIMediumAI2025-05-08
CVE-2025-21610 Trix allows Cross-site Scripting via `javascript:` url in a link — trixCWE-79 5.3 Medium2025-01-03
CVE-2024-53847 Trix vulnerable to Cross-site Scripting on copy & paste — trixCWE-79 6.1 -2024-12-09
CVE-2024-43368 Trix has a Cross-Site Scripting (XSS) vulnerability on copy & paste — trixCWE-79 6.5 Medium2024-08-14
CVE-2024-34341 The Trix Editor Contains an Arbitrary Code Execution Vulnerability — trixCWE-79 5.4 Medium2024-05-07

This page lists every published CVE security advisory associated with basecamp. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.