ByteOS Network

BasePress

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-62761

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.03% / 8.72%

7 Day CHG+0.01%

Published-31 Dec, 2025 | 08:44

Updated-12 May, 2026 | 01:06

WordPress Knowledge Base documentation & wiki plugin – BasePress plugin <= 2.17.0.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BasePress Knowledge Base documentation & wiki plugin – BasePress basepress allows Stored XSS.This issue affects Knowledge Base documentation & wiki plugin – BasePress: from n/a through <= 2.17.0.1.

Vendor-BasePress

Product-Knowledge Base documentation & wiki plugin – BasePress

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2024-52407

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-9.9||CRITICAL

EPSS-0.58% / 69.31%

7 Day CHG~0.00%

Published-16 Nov, 2024 | 21:46

Updated-28 Apr, 2026 | 16:10

WordPress BasePress Migration Tools plugin <= 1.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in BasePress BasePress Migration Tools basepress-migration-tools allows Upload a Web Shell to a Web Server.This issue affects BasePress Migration Tools: from n/a through <= 1.0.0.

Vendor-BasePress codesavory

Product-BasePress Migration Tools basepress_migration_tools

CWE ID-CWE-434

Unrestricted Upload of File with Dangerous Type