Unrated severityNVD Advisory· Published Jan 7, 2010· Updated Jun 16, 2026
CVE-2009-4590
CVE-2009-4590
Description
Cross-site scripting (XSS) vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:secureideas:base:*:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:secureideas:base:*:*:*:*:*:*:*:*range: <=1.4.3
- cpe:2.3:a:secureideas:base:0.9.8:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:0.9.9:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.3.9:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:secureideas:base:1.4.1:*:*:*:*:*:*:*
- (no CPE)range: <1.4.4
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.