{"id":"CVE-2018-0572","details":"baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote authenticated attackers to bypass access restriction to view or alter a restricted content via unspecified vectors.","aliases":["GHSA-mjj9-33j8-pfwh"],"modified":"2026-04-11T16:55:25.587511Z","published":"2018-06-26T14:29:00.957Z","references":[{"type":"ADVISORY","url":"http://jvn.jp/en/jp/JVN67881316/index.html"},{"type":"ADVISORY","url":"https://basercms.net/security/JVN67881316"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/baserproject/basercms","events":[{"introduced":"c282aeca512ddadc69d02edf860c870d5662903b"},{"last_affected":"8dafa2d69e449536e0320266a75a4516df5b00ad"},{"introduced":"0"},{"last_affected":"0394401af4b827ab6e3e779a4abac8e90eb4b54a"}],"database_specific":{"cpe":"cpe:2.3:a:basercms:basercms:*:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"3.0.0"},{"last_affected":"3.0.15"},{"introduced":"0"},{"last_affected":"4.1.0.1"}]}}],"versions":["3.0.0","3.0.1","3.0.10","3.0.11","3.0.11.1","3.0.12","3.0.13","3.0.14","3.0.15","3.0.2","3.0.3","3.0.4","3.0.5","3.0.5.1","3.0.6","3.0.6-beta","3.0.7","3.0.9","4.0.0","4.0.0-beta","4.0.6","4.0.7","4.1.0","4.1.0.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-0572.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}]}