CVE-2020-15155: Cross-site Scripting

August 28, 2020 (updated September 3, 2020)

baserCMS is affected by Cross Site Scripting (XSS) via arbitrary script execution. Admin access is required to exploit this vulnerability. The affected components is toolbar.php.

References

basercms.net/security/20200827
nvd.nist.gov/vuln/detail/CVE-2020-15155

Code Behaviors & Features

Detect and mitigate CVE-2020-15155 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →