CVE Published: 07/12/2022 |
CVE Updated: 03/08/2024 |
CVE Year: 2022 Source: jpcert |
Vendor: baserCMS Users Community |
Product: baserCMS Status : PUBLISHED
CVE-2022-42486 Description
Stored cross-site scripting vulnerability in User group management of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.