20 matches found
EUVD-2012-1055
Malware in sbrugna...
CVE-2012-1199
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine BASE 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the 1 BASEpath parameter to baseagmain.php, 2 basedbsetup.php, 3 basegraphcommon.php, 4 basegraphdisplay.php, 5 basegraphform.php, ...
CVE-2012-1199
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine BASE 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the 1 BASEpath parameter to baseagmain.php, 2 basedbsetup.php, 3 basegraphcommon.php, 4 basegraphdisplay.php, 5 basegraphform.php, ...
CVE-2012-1199
BASE 1.4.5 contains multiple PHP remote file inclusion vulnerabilities that allow an attacker to execute arbitrary PHP code by passing a URL to the BASE_path parameter (and related parameters) to various BASE scripts (e.g., base_ag_main.php, base_db_setup.php, base_graph_.php, base_qry_ .php, bas...
CVE-2012-1198
baseagmain.php in Basic Analysis and Security Engine BASE 1.4.5 allows remote attackers to execute arbitrary code by uploading contents of the file with an executable extension via a create action, then accessing it via a view action...
CVE-2012-1199
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine BASE 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the 1 BASEpath parameter to baseagmain.php, 2 basedbsetup.php, 3 basegraphcommon.php, 4 basegraphdisplay.php, 5 basegraphform.php, ...
Basic Analysis and Security Engine (BASE) 1.4.5 - base_ag_main.php Crafted Arbitrary File Upload Arbitrary Code Execution
Basic Analysis and Security Engine BASE 1.4.5 - baseagmain.php Crafted Arbitrary File Upload Arbitrary Code Execution source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit the...
Basic Analysis and Security Engine (BASE) 1.4.5 - '/includes/base_state_criteria.inc.php?base_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...
Basic Analysis and Security Engine (BASE) 1.4.5 - '/includes/base_db.inc.php?base_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...
Basic Analysis and Security Engine (BASE) 1.4.5 - 'base_ag_main.php?base_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...
Basic Analysis and Security Engine (BASE) 1.4.5 - 'base_graph_form.php?base_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...
Basic Analysis and Security Engine (BASE) 1.4.5 - setupsetup2.php?ado_inc_PHP Remote File Inclusion
Basic Analysis and Security Engine BASE 1.4.5 - setupsetup2.php?adoincPHP Remote File Inclusion source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain...
Basic Analysis and Security Engine (BASE) 1.4.5 - base_stat_iplink.php?base_path Remote File Inclusion
Basic Analysis and Security Engine BASE 1.4.5 - basestatiplink.php?basepath Remote File Inclusion source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain...
Basic Analysis and Security Engine (BASE) 1.4.5 - base_qry_common.php?base_path Remote File Inclusion
Basic Analysis and Security Engine BASE 1.4.5 - baseqrycommon.php?basepath Remote File Inclusion source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain...
Basic Analysis and Security Engine (BASE) 1.4.5 - 'base_stat_alerts.php?base_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...
Basic Analysis and Security Engine (BASE) 1.4.5 - '/admin/base_useradmin.php?base_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/51979/info BASE is prone to a security-bypass vulnerability and multiple remote file-include vulnerabilities. An attacker can exploit these issues to gain unauthorized access, obtain potentially sensitive information, or execute arbitrary script code in t...
CVE-2012-1017
BASE 1.4.5 is vulnerable to SQL injection in base_qry_main.php via ip_addr[0][1], ip_addr[0][2], and ip_addr[0][9], caused by insufficient sanitization of user input. This can allow remote attackers to execute arbitrary SQL commands. Exploitation details and remediation are not provided in the av...
BASE 1.4.5 - 'base_qry_main.php?t_view' SQL Injection
Exploit Title: BASE 1.4.5 SQL Injection Vulnerability Date: 30/01/2012 Author: a.kadir altan testpenterATgmail.com Software Link: http://base.secureideas.net Version: 1.4.5 Platform: PHP BASE Snort Analysis Front-end SQLi Vulnerability Vulnerable parameters: ipaddr01 ipaddr02 ipaddr09 Vulnerable...
BASE 1.4.5 - base_qry_main.php?t_view SQL Injection
BASE 1.4.5 - baseqrymain.php?tview SQL Injection Exploit Title: BASE 1.4.5 SQL Injection Vulnerability Date: 30/01/2012 Author: a.kadir altan testpenterATgmail.com Software Link: http://base.secureideas.net Version: 1.4.5 Platform: PHP BASE Snort Analysis Front-end SQLi Vulnerability Vulnerable...
BASE 1.4.5 (base_qry_main.php t_view) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: BASE 1.4.5 SQL Injection Vulnerability Date: 30/01/2012 Author: a.kadir altan testpenterATgmail.com Software Link: http://base.secureideas.net Version: 1.4.5 Platform: PHP BASE Snort Analysis Front-end SQLi Vulnerability...