Basic Analysis and Security Engine

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2009-4838	BASE Basic Analysis and Security Engine		0.00	—	0.00		May 6, 2010	SQL injection vulnerability in base_ag_common.php in Basic Analysis and Security Engine (BASE) before 1.4.3.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information.
CVE-2009-4590	BASE Basic Analysis and Security Engine		0.00	—	0.00		Jan 7, 2010	Cross-site scripting (XSS) vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2009-4838May 6, 2010
BASE
Basic Analysis and Security Engine
risk 0.00cvss —epss 0.00
SQL injection vulnerability in base_ag_common.php in Basic Analysis and Security Engine (BASE) before 1.4.3.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information.
CVE-2009-4590Jan 7, 2010
BASE
Basic Analysis and Security Engine
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.