Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/baserproject/basercms@3.0.10
purl pkg:composer/baserproject/basercms@3.0.10
Next non-vulnerable version 3.0.11
Latest non-vulnerable version 5.0.9
Risk
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-erav-4pk1-wfhc
Aliases:
CVE-2016-4879
Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in the baserCMS Mail plugin allows remote attackers to hijack the authentication of administrators via unspecified vectors.
3.0.11
Affected by 0 other vulnerabilities.
VCID-hdqc-q22s-3yfe
Aliases:
CVE-2016-4880
Cross-site Scripting Cross-site scripting vulnerability in the baserCMS Blog plugin allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
3.0.11
Affected by 0 other vulnerabilities.
VCID-m4g1-p7z3-mydw
Aliases:
CVE-2016-4881
Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in the baserCMS Blog plugin allows remote attackers to hijack the authentication of administrators via unspecified vectors.
3.0.11
Affected by 0 other vulnerabilities.
VCID-ydh5-rg6c-t7gx
Aliases:
CVE-2016-4878
Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in baserCMS allows remote attackers to hijack the authentication of administrators via unspecified vectors.
3.0.11
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:36:53.495594+00:00 GitLab Importer Affected by VCID-m4g1-p7z3-mydw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4881.yml 38.6.0
2026-06-02T04:36:53.424581+00:00 GitLab Importer Affected by VCID-ydh5-rg6c-t7gx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4878.yml 38.6.0
2026-06-02T04:36:53.392394+00:00 GitLab Importer Affected by VCID-erav-4pk1-wfhc https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4879.yml 38.6.0
2026-06-02T04:36:53.320067+00:00 GitLab Importer Affected by VCID-hdqc-q22s-3yfe https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4880.yml 38.6.0