CVE-2009-4838

SQL injection vulnerability in baseagcommon.php in Basic Analysis and Security Engine BASE before 1.4.3.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information...

CVE-2009-4838

SQL injection vulnerability in baseagcommon.php in Basic Analysis and Security Engine BASE before 1.4.3.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information...

CVE-2009-4591

SQL injection vulnerability in Basic Analysis and Security Engine BASE before 1.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

CVE-2009-4590

Cross-site scripting XSS vulnerability in baselocalrules.php in Basic Analysis and Security Engine BASE before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Design/Logic Flaw

Unspecified vulnerability in baselocalrules.php in Basic Analysis and Security Engine BASE before 1.4.4 allows remote attackers to include arbitrary local files via unknown vectors...

CVE-2009-4592

Unspecified vulnerability in baselocalrules.php in Basic Analysis and Security Engine BASE before 1.4.4 allows remote attackers to include arbitrary local files via unknown vectors...

CVE-2009-4592

BASE prior to 1.4.4 is affected by CVE-2009-4592: an unspecified vulnerability in base_local_rules.php allows remote attackers to include arbitrary local files via unknown vectors. The OpenVAS entries also describe multiple input-validation vulnerabilities in BASE before 1.4.4, including local fi...

Basic Analysis and Security Engine Detection

This host is running Basic Analysis and Security Engine BASE. BASE provides a web front-end to query and analyze the alerts coming from a SNORT IDS system. OpenVAS Vulnerability Test $Id: basedetect.nasl 5720 2017-03-24 14:15:57Z cfi $ Basic Analysis and Security Engine Detection Authors: Michael...

Basic Analysis and Security Engine Detection

This host is running Basic Analysis and Security Engine BASE. BASE provides a web front-end to query and analyze the alerts coming from a SNORT IDS system. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Basic Analysis and Security Engine (BASE) 1.2.4 - 'readRoleCookie()' Authentication Bypass

source: https://www.securityfocus.com/bid/35470/info Basic Analysis And Security Engine BASE is prone to an authentication-bypass vulnerability. An attacker can exploit this issue to gain unauthorized access to the affected application. Successfully exploiting this issue will lead to other attack...

CVE-2007-6156

Multiple cross-site scripting XSS vulnerabilities in baseqrymain.php in Base Analysis and Security Engine BASE before 1.3.9 allow remote attackers to inject arbitrary web script or HTML via the 1 sig0 and 2 sig1 parameters...

BASE base_qry_common.php file include

Added: 06/23/2006 CVE: CVE-2006-2685 BID: 18298 OSVDB: 25770 Background Snort is an open-source intrusion detection system. The Basic Analysis and Security Engine BASE is a web interface for analyzing Snort results. Problem If the registerglobals PHP option is enabled, the baseqrycommon.php scrip...

BASE <= 1.2.4 melissa (Snort Frontend) Remote Inclusion Vulnerabilities

No description provided by source. Basic Analysis and Security Engine BASE = 1.2.4 melissa Inclusion Vulnerabilities Just glanced over BASE for a pentesting job. /str0ke ! milw0rm.com code baseqrycommon.php includeonce"$BASEpath/includes/basesignature.inc.php"; /code...

BASE 1.2.4 - melissa Snort Frontend Remote File Inclusion

BASE 1.2.4 - melissa Snort Frontend Remote File Inclusion Basic Analysis and Security Engine BASE = 1.2.4 melissa Inclusion Vulnerabilities Just glanced over BASE for a pentesting job. /str0ke ! milw0rm.com code baseqrycommon.php includeonce"$BASEpath/includes/basesignature.inc.php"; /code...

CVE-2006-1590

CVE-2006-1590 is an XSS vulnerability in BASE 1.2.4 and ACID 0.9.6b23 (PrintFreshPage function). The issue allows remote attackers to inject arbitrary script/HTML via: (a) back parameter to base_graph_main.php, (b) netmask parameter to base_stat_ipaddr.php, (c) submit parameter to base_qry_alert....

CVE-2006-1505

basemaintenance.php in Basic Analysis and Security Engine BASE before 1.2.4 melissa, when running in standalone mode, allows remote attackers to bypass authentication, possibly by setting the standalone parameter to "yes"...

Basic Analysis and Security Engine (BASE) 1.2 - Base_qry_main.php SQL Injection

Basic Analysis and Security Engine BASE 1.2 - Baseqrymain.php SQL Injection source: https://www.securityfocus.com/bid/15199/info Basic Analysis And Security Engine is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied inpu...