CVE-2024-46998 | baserCMS has a Cross-site Scripting (XSS) Vulnerability in Edit Email Form Settings Feature
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Edit Email Form Settings Feature. Version 5.1.2 fixes the issue.
Conclusion & alert: CVE-2024-46998 is rated Moderate Risk (55.8/100): CVSS High severity, with medium exploitation likelihood (EPSS 1.06%).Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
Exploit prediction scoring system (EPSS) score for CVE-2024-46998
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
GHSA-p3m2-mj3j-j49x · Severity: medium · Ecosystem: composer — baserCMS has a Cross-site Scripting (XSS) Vulnerability in Edit Email Form Settings Feature
Affected software / configurations for CVE-2024-46998