【JVN#73283159】XSS vulnerability in Site search Feature

Moderate

ryuring published GHSA-66c2-p8rh-qx87

Feb 22, 2024

Package

Site search Feature (baserCMS)

Affected versions

5.0.8

Patched versions

5.0.9

Description

There is a XSS Vulnerability in Site search Feature to baserCMS.

Target

baserCMS 5.0.8 and earlier versions

Vulnerability

Malicious code may be executed in Site search Feature.

Countermeasures

Update to the latest version of baserCMS

Please refer to the following page to reference for more information.
https://basercms.net/security/JVN_73283159

Severity

Moderate

6.1

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N