VulnerableCode Package Details - pkg:composer/baserproject/basercms@3.0.11

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-erav-4pk1-wfhc	Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in the baserCMS Mail plugin allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CVE-2016-4879
VCID-hdqc-q22s-3yfe	Cross-site Scripting Cross-site scripting vulnerability in the baserCMS Blog plugin allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.	CVE-2016-4880
VCID-m4g1-p7z3-mydw	Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in the baserCMS Blog plugin allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CVE-2016-4881
VCID-ydh5-rg6c-t7gx	Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in baserCMS allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CVE-2016-4878

Vulnerability

Summary

Aliases

VCID-erav-4pk1-wfhc

Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in the baserCMS Mail plugin allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVE-2016-4879

VCID-hdqc-q22s-3yfe

Cross-site Scripting Cross-site scripting vulnerability in the baserCMS Blog plugin allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2016-4880

VCID-m4g1-p7z3-mydw

Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in the baserCMS Blog plugin allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVE-2016-4881

VCID-ydh5-rg6c-t7gx

Cross-Site Request Forgery (CSRF) Cross-site request forgery (CSRF) vulnerability in baserCMS allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVE-2016-4878

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:36:53.499216+00:00	GitLab Importer	Fixing	VCID-m4g1-p7z3-mydw	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4881.yml	38.6.0
2026-06-02T04:36:53.428124+00:00	GitLab Importer	Fixing	VCID-ydh5-rg6c-t7gx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4878.yml	38.6.0
2026-06-02T04:36:53.396144+00:00	GitLab Importer	Fixing	VCID-erav-4pk1-wfhc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4879.yml	38.6.0
2026-06-02T04:36:53.324760+00:00	GitLab Importer	Fixing	VCID-hdqc-q22s-3yfe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/baserproject/basercms/CVE-2016-4880.yml	38.6.0