Stored cross-site scripting vulnerability in User group management of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| baserproject/basercms(Packagist) | 0 | 4.7.2 | N/A |
CVSS Metrics
