Lucene search
K

4 matches found

CVE
CVE
added 2010/05/05 6:0 p.m.59 views

CVE-2009-4837

CVE-2009-4837 involves multiple cross-site scripting (XSS) vulnerabilities in the Basic Analysis and Security Engine (BASE) prior to version 1.4.3.1. The affected components allow remote attackers to inject arbitrary web script or HTML via the following parameters: (1) sig[1] in base/base_qry_mai...

4.3CVSS5.8AI score0.01097EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/02/18 8:0 p.m.16 views

CVE-2005-4878

Multiple cross-site scripting XSS vulnerabilities in 1 acidqrymain.php in Analysis Console for Intrusion Databases ACID 0.9.6b20 and 2 baseqrymain.php in Basic Analysis and Security Engine BASE 1.2, and unspecified other console scripts in these products, allow remote attackers to inject arbitrar...

5.9AI score0.01098EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2007/11/29 1:46 a.m.29 views

CVE-2007-6156

Multiple cross-site scripting XSS vulnerabilities in baseqrymain.php in Base Analysis and Security Engine BASE before 1.3.9 allow remote attackers to inject arbitrary web script or HTML via the 1 sig0 and 2 sig1 parameters...

4.3CVSS5.9AI score0.0125EPSS
Exploits0References1
CVE
CVE
added 2007/11/29 1:0 a.m.43 views

CVE-2007-6156

BASE/Base Analysis and Security Engine (BASE) before 1.3.9 contains cross-site scripting in base_qry_main.php, exploitable via sig[0] and sig[1] parameters. This affects BASE 1.3.8 and earlier releases per CVE-2007-6156. Impact: remote attackers can inject arbitrary web script/HTML. Mitigation: u...

4.3CVSS5.7AI score0.0125EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder