QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2022-42486

Back to search

CVE-2022-42486

Published: Dec 7, 2022

Modified: Apr 23, 2025

PUBLISHED

Description

Stored cross-site scripting vulnerability in User group management of baserCMS versions prior to 4.7.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.

VendorProductVersions

baserCMS Users Community

baserCMS

affected
versions prior to 4.7.2

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now