CVE-2023-44379
- Source
- https://cve.org/CVERecord?id=CVE-2023-44379
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-44379.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-44379
- Aliases
- Published
- 2024-02-22T14:47:14.333Z
- Modified
- 2026-05-01T04:20:46.128877Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- baserCMS Cross-site Scripting vulnerability in Site search Feature
- Details
-
baserCMS is a website development framework. Prior to version 5.0.9, there is a cross-site scripting vulnerability in the site search feature. Version 5.0.9 contains a fix for this vulnerability.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/44xxx/CVE-2023-44379.json", "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-79" ] }- References
-
- https://basercms.net/security/JVN_73283159
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/44xxx/CVE-2023-44379.json
- https://github.com/baserproject/basercms/security/advisories/GHSA-66c2-p8rh-qx87
- https://nvd.nist.gov/vuln/detail/CVE-2023-44379
- https://github.com/baserproject/basercms/commit/18549396e5a9b8294306a54a876af164b0b57da4
Affected packages
Git / github.com/baserproject/basercms
Affected ranges
- Type
- GIT
- Repo
- https://github.com/baserproject/basercms
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixed
- Database specific
{ "extracted_events": [ { "introduced": "0" }, { "fixed": "5.0.9" } ], "source": [ "CPE_FIELD", "REFERENCES" ], "cpe": "cpe:2.3:a:basercms:basercms:*:*:*:*:*:*:*:*" }
Affected versions
2.*
2.0.0
2.0.0-beta
2.0.1
2.0.2
2.0.3
2.1.0
2.1.2
3.*
3.0.0
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.5.1
3.0.6
3.0.6-beta
3.0.7
4.*
4.0.0
4.0.0-beta
4.0.6
4.0.7
4.1.0
4.1.0.1
4.1.1
4.1.2
4.2.2
4.2.4
4.3.0
4.3.3
4.3.5
4.3.6
4.3.7
4.3.7.1
4.4.0
4.4.1.1
4.4.2.1
4.4.3
4.4.4
4.4.6
4.4.8
4.5.0
4.5.1
4.5.2
4.6.0
4.6.1
4.6.1.1
4.6.2
4.7.0
4.7.2
4.7.3
4.7.5
5.*
5.0.0-beta1
5.0.0-beta2
5.0.0-beta3
5.0.0-beta4