OpenCVE

Filtered by vendor Basercms Subscriptions

Filtered by product Mail Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2016-4879	1 Basercms	2 Basercms, Mail	2024-11-21	8.8 High
Cross-site request forgery (CSRF) vulnerability in baserCMS plugin Mail version 3.0.10 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
CVE-2016-4877	1 Basercms	2 Basercms, Mail	2024-11-21	5.4 Medium
Cross-site scripting vulnerability in baserCMS plugin Mail version 3.0.10 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

Page 1 of 1.