CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2018-0569

HIGH
8.8
CVSS Severity Score
EPSS Score0.0510%
EPSS Percentile31.92th
Published2018年6月26日
Last Modified2024年11月21日

Vulnerability Description

baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote authenticated attackers to execute arbitrary OS commands via unspecified vectors.

Affected Platforms (CPE)

📦
Basercms

Basercms

>= 3.0.0 and <= 3.0.15
📦
Basercms

Basercms

> 4.0.0 and <= 4.1.0.1

References & Advisories

🔗 http://jvn.jp/en/jp/JVN67881316/index.html
🔗 https://basercms.net/security/JVN67881316
🔗 http://jvn.jp/en/jp/JVN67881316/index.html
🔗 https://basercms.net/security/JVN67881316

相關漏洞威脅

CVE-2017-108429.8

SQL injection vulnerability in the baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to execute arbitrary SQL...

CVE-2021-412439.1

There is a Potential Zip Slip Vulnerability and OS Command Injection Vulnerability on the management system of baserCMS. Users wit...

CVE-2017-108448.8

baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows an attacker to execute arbitrary PHP code on the server via unspecified vect...

CVE-2016-11728.8

Cross-site request forgery (CSRF) vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to hijack ...