baserCMS でセキュリティ上の問題を発見した場合は、通常のIssue ではなく、GitHub セキュリティアドバイザリの プライベート脆弱性レポート を利用してください。
baserCMSチームは、各報告について、まず脆弱性の確認に努めます。
Security: baserproject/basercms
Security
.github/SECURITY.md
-
【JVN#61463528】XSS Vulnerability in Blog posts and Contents list FeatureGHSA-wrjc-fmfq-w3jr published
Oct 24, 2024 by ryuringModerate -
【JVN#98693329】XSS Vulnerability in Edit Email Form Settings FeatureGHSA-p3m2-mj3j-j49x published
Oct 24, 2024 by ryuringHigh -
【JVN#50244114】XSS Vulnerability in HTTP 400 Bad RequestGHSA-mr7q-fv7j-jcgv published
Oct 24, 2024 by ryuringModerate -
【JVN#00876083】XSS Vulnerability in Blog posts FeatureGHSA-66jv-qrm3-vvfg published
Oct 24, 2024 by ryuringModerate -
【JVN#73283159】XSS vulnerability in Content ManagementGHSA-jjxq-m8h3-4vw5 published
Feb 22, 2024 by ryuringModerate -
【JVN#73283159】OS command injection vulnerability in InstallerGHSA-77fc-4cv5-hmfr published
Feb 22, 2024 by ryuringModerate -
【JVN#73283159】XSS vulnerability in Site search FeatureGHSA-66c2-p8rh-qx87 published
Feb 22, 2024 by ryuringModerate -
[baserCMS4] CSRF vulnerability in Content preview FeatureGHSA-fw9x-cqjq-7jx5 published
Oct 26, 2023 by ryuringModerate -
[baserCMS4] Directory Traversal vulnerability in Form submission data management FeatureGHSA-hmqj-gv2m-hq55 published
Oct 26, 2023 by ryuringModerate -
[baserCMS4] Code Injection Vulnerability in Mail Form FeatureGHSA-vrm6-c878-fpq6 published
Oct 26, 2023 by ryuringModerate
Learn more about advisories related to baserproject/basercms in the GitHub Advisory Database