CyberSec.Space Logo
Back to CVE Browser

CVE-2018-0569

HIGH
8.8
CVSS Severity Score
EPSS Score0.0510%
EPSS Percentile31.92th
PublishedJun 26, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote authenticated attackers to execute arbitrary OS commands via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Basercms

Basercms

>= 3.0.0 and <= 3.0.15
πŸ“¦
Basercms

Basercms

> 4.0.0 and <= 4.1.0.1

References & Advisories

πŸ”— http://jvn.jp/en/jp/JVN67881316/index.html
πŸ”— https://basercms.net/security/JVN67881316
πŸ”— http://jvn.jp/en/jp/JVN67881316/index.html
πŸ”— https://basercms.net/security/JVN67881316

Related Vulnerabilities

CVE-2017-108429.8

SQL injection vulnerability in the baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to execute arbitrary SQL...

CVE-2021-412439.1

There is a Potential Zip Slip Vulnerability and OS Command Injection Vulnerability on the management system of baserCMS. Users wit...

CVE-2017-108448.8

baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows an attacker to execute arbitrary PHP code on the server via unspecified vect...

CVE-2016-11728.8

Cross-site request forgery (CSRF) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to hijack ...