Identifier

CVE-2020-15155

Package Slug

packagist/baserproject/basercms

Vulnerability

Cross-site Scripting

Description

baserCMS is affected by Cross Site Scripting (XSS) via arbitrary script execution. Admin access is required to exploit this vulnerability. The affected components is toolbar.php.

Affected Versions

All versions up to 4.3.6

Solution

Upgrade to version 4.3.7 or above.

Last Modified

2020-09-04

source