Moderate severityNVD Advisory· Published Oct 6, 2015· Updated May 6, 2026
CVE-2015-5640
CVE-2015-5640
Description
baserCMS before 3.0.8 allows remote authenticated users to modify arbitrary user settings via a crafted request.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
baserproject/basercmsPackagist | < 3.0.8 | 3.0.8 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- basercms.net/security/JVN04855224nvdVendor AdvisoryWEB
- jvn.jp/en/jp/JVN04855224/index.htmlnvdVendor AdvisoryWEB
- jvndb.jvn.jp/jvndb/JVNDB-2015-000138nvdVendor AdvisoryWEB
- github.com/advisories/GHSA-v9gf-98vr-mgp2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2015-5640ghsaADVISORY
News mentions
0No linked articles in our index yet.