Primary

Context

baserCMS Cross-Site Scripting Vulnerability in Blog Post Editing

Vulnerability

Patched

A cross-site scripting (XSS) vulnerability has been identified in baserCMS versions prior to 5.2.3, specifically within the blog post editing feature. This issue allows for the execution of malicious JavaScript in blog posts.

Impact

Exploitation of this vulnerability enables the execution of arbitrary JavaScript, potentially leading to various attacks such as session hijacking or defacement.

Remediation

Users are advised to update baserCMS to version 5.2.3 or later.

Added: Mar 31, 2026, 1:21 AM

Updated: Mar 31, 2026, 1:21 AM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

1.7

exploitability

5.0

remediation

7.7

relevance

5.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

1.7

exploitability

5.0

remediation

7.7

relevance

5.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

baserCMS Cross-Site Scripting Vulnerability in Blog Post Editing

Vulnerability

Impact

Remediation

Affected Products

baserCMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating