Severity by source
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Primary rating from GitHub Advisory · only source for this CVE.
CVSS VectorGitHub Advisory
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Lifecycle Timeline
4DescriptionGitHub Advisory
baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has DOM-based cross-site scripting in tag creation. This issue has been patched in version 5.2.3.
AnalysisAI
DOM-based cross-site scripting in baserCMS tag creation functionality allows remote attackers to execute malicious JavaScript in victim browsers. Affects all baserCMS versions prior to 5.2.3. The vulnerability requires user interaction (CVSS UI:R) but needs no authentication (PR:N), enabling phishing or social engineering attacks. EPSS data not available; no public exploit identified at time of analysis. Vendor-released patch available in version 5.2.3.
Technical ContextAI
This is a DOM-based XSS vulnerability (CWE-79) affecting the tag creation component of baserCMS, an open-source website development framework for PHP. DOM-based XSS occurs when client-side JavaScript code processes attacker-controlled input and unsafely writes it to the DOM without proper sanitization. Unlike reflected or stored XSS, the malicious payload never reaches the server-the vulnerability exists entirely in client-side code. The affected product is baserproject:basercms (CPE 2.3:a:baserproject:basercms) across all versions in the 5.x branch prior to the patched release. The tag creation interface likely accepts user input that is directly manipulated via JavaScript (e.g., document.write, innerHTML, or DOM manipulation APIs) without encoding special characters, allowing attackers to inject arbitrary HTML/JavaScript that executes in the security context of the application.
RemediationAI
Immediately upgrade to baserCMS version 5.2.3 or later, which contains a complete fix for the DOM-based XSS vulnerability in tag creation. The patched release is available at https://github.com/baserproject/basercms/releases/tag/5.2.3. Organizations should follow standard upgrade procedures including backing up database and files, testing in a staging environment, and verifying tag creation functionality post-upgrade. If immediate patching is not feasible, implement defense-in-depth controls: restrict tag creation permissions to trusted administrative users only, deploy Content Security Policy (CSP) headers with strict script-src directives to mitigate XSS impact, and educate users about not clicking suspicious links related to tag creation workflows. Monitor application logs for unusual tag creation patterns or JavaScript injection attempts. Review any custom tag-handling code for similar DOM manipulation vulnerabilities. Long-term, establish a regular patch cadence for baserCMS and subscribe to security advisories at https://basercms.net/security to receive timely notifications of future vulnerabilities.
In baserCMS before 4.1.4, lib\Baser\Model\ThemeConfig.php allows remote attackers to execute arbitrary PHP code via the
SQL injection vulnerability in the baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to execute arb
baserCMS is a website development framework. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploita
baserCMS is a website development framework. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploita
baserCMS is a Content Management system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable,
baserCMS is a Content Management system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable,
OS command injection in baserCMS installer prior to version 5.2.3 allows remote attackers to execute arbitrary system co
OS command injection in baserCMS update functionality allows authenticated administrators to execute arbitrary commands
OS command injection in baserCMS core update functionality allows authenticated administrators to execute arbitrary syst
baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows an attacker to execute arbitrary PHP code on the server via unspec
Cross-site request forgery (CSRF) vulnerability in baserCMS plugin Mail version 3.0.10 and earlier allows remote attacke
Cross-site request forgery (CSRF) vulnerability in baserCMS plugin Blog version 3.0.10 and earlier allows remote attacke
Same weakness CWE-79 – Cross-site Scripting (XSS)
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-17269
GHSA-677c-xv24-crgx