CVE-2023-43647 Information

Description

baserCMS is a website development framework. Prior to version 4.8.0 there is a cross-site scripting vulnerability in the file upload feature of baserCMS. Version 4.8.0 contains a patch for this issue.

Reference

https://github.com/baserproject/basercms/commit/eb5977533d05db4f3bb03bd19630b66052799b2e https://basercms.net/security/JVN_24381990 https://github.com/baserproject/basercms/security/advisories/GHSA-ggj4-78rm-6xgv