CVE-2023-44379

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 22, 2024

CWE ID 79

Summary

CVE-2023-44379 is a cross-site scripting (XSS) vulnerability affecting the site search feature of baserCMS, a website development framework. Prior to version 5.0.9, this issue allowed attackers to inject malicious scripts into web pages viewed by other users. This could lead to unauthorized access to user data or the execution of malicious code. Version 5.0.9 includes a patch to resolve this vulnerability, mitigating the risk for affected users who upgrade to this version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s0v5XP
https://www.cve.org/CVERecord?id=CVE-2023-44379
https://nvd.nist.gov/vuln/detail/CVE-2023-44379

Back to Vulnerability Database

CVE-2023-44379

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations