Browse all 33 CVE security advisories affecting baserproject. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Baserproject is an open-source content management system designed for rapid website creation and management, primarily targeting small to medium enterprises and public sector organizations. Historically, its codebase has exhibited a significant volume of security flaws, with thirty-three CVEs currently documented. These vulnerabilities predominantly stem from insufficient input validation, leading to critical issues such as remote code execution, cross-site scripting, and SQL injection. Additionally, several incidents involve broken access control and privilege escalation, allowing unauthorized users to manipulate administrative functions or execute arbitrary commands on the server. The high frequency of these defects suggests systemic weaknesses in the application’s security architecture and input sanitization processes. While the platform offers functional utility for content publishing, its extensive history of exploitable bugs necessitates rigorous patching and strict access controls for any deployment, highlighting the risks associated with maintaining legacy open-source software without continuous, proactive security auditing.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-15159 | Cross Site Scripting leading to RCE in baserCMS — basercmsCWE-79 | 7.6 | High | 2020-08-28 |
| CVE-2020-15155 | Cross-Site Scripting in baserCMS — basercmsCWE-79 | 7.3 | High | 2020-08-28 |
| CVE-2020-15154 | Cross Site Scripting in baserCMS — basercmsCWE-79 | 7.3 | High | 2020-08-28 |
This page lists every published CVE security advisory associated with baserproject. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.