Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
basic analysis and security engine vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-1198
base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote malicious users to execute arbitrary code by uploading contents of the file with an executable extension via a create action, then accessing it via a view action.
Secureideas Basic Analysis And Security Engine 1.4.5
1 EDB exploit
7.5
CVSSv2
CVE-2012-1199
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) BASE_path parameter to base_ag_main.php, (2) base_db_setup.php, (3) base_graph_common.php, (4) bas...
Secureideas Basic Analysis And Security Engine 1.4.5
38 EDB exploits
7.5
CVSSv2
CVE-2012-1017
Multiple SQL injection vulnerabilities in base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote malicious users to execute arbitrary SQL commands via the (1) ip_addr[0][1], (2) ip_addr[0][2], or (3) ip_addr[0][9] parameters.
Secureideas Base 1.4.5
1 EDB exploit
7.5
CVSSv2
CVE-2009-4838
SQL injection vulnerability in base_ag_common.php in Basic Analysis and Security Engine (BASE) prior to 1.4.3.1 allows remote malicious users to execute arbitrary SQL commands via unspecified parameters. NOTE: some of these details are obtained from third party information.
Secureideas Basic Analysis And Security Engine
Secureideas Basic Analysis And Security Engine 1.2
Secureideas Basic Analysis And Security Engine 1.3.6
Secureideas Basic Analysis And Security Engine 1.3.8
Secureideas Basic Analysis And Security Engine 1.2.1
Secureideas Basic Analysis And Security Engine 1.1.2
Secureideas Basic Analysis And Security Engine 1.1
Secureideas Basic Analysis And Security Engine 1.1.4
Secureideas Basic Analysis And Security Engine 1.2.4
Secureideas Basic Analysis And Security Engine 1.2.5
Secureideas Basic Analysis And Security Engine 1.2.6
Secureideas Basic Analysis And Security Engine 1.2.7
Secureideas Basic Analysis And Security Engine 1.2.0
Secureideas Basic Analysis And Security Engine 1.2.2
Secureideas Basic Analysis And Security Engine 1.1.3
Secureideas Basic Analysis And Security Engine 1.3.5
Secureideas Basic Analysis And Security Engine 1.3.9
7.5
CVSSv2
CVE-2009-4592
Unspecified vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) prior to 1.4.4 allows remote malicious users to include arbitrary local files via unknown vectors.
Secureideas Base 1.0
Secureideas Base 1.2.4
Secureideas Base 1.4.0
Secureideas Base 1.4.1
Secureideas Base 1.2.5
Secureideas Base 1.2.6
Secureideas Base
Secureideas Base 0.9.8
Secureideas Base 0.9.9
Secureideas Base 1.3.8
Secureideas Base 1.3.9
Secureideas Base 1.2.7
Secureideas Base 1.3.5
Secureideas Base 1.3.6
7.5
CVSSv2
CVE-2009-4591
SQL injection vulnerability in Basic Analysis and Security Engine (BASE) prior to 1.4.4 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Secureideas Base 1.3.6
Secureideas Base 1.3.5
Secureideas Base 0.9.8
Secureideas Base
Secureideas Base 1.2.7
Secureideas Base 1.2.6
Secureideas Base 1.3.9
Secureideas Base 1.3.8
Secureideas Base 1.0
Secureideas Base 0.9.9
Secureideas Base 1.4.1
Secureideas Base 1.4.0
Secureideas Base 1.2.5
Secureideas Base 1.2.4
7.5
CVSSv2
CVE-2007-5578
Basic Analysis and Security Engine (BASE) prior to 1.3.8 sends a redirect to the web browser but does not exit, which allows remote malicious users to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors.
Secureideas Basic Analysis And Security Engine 1.3.6
7.5
CVSSv2
CVE-2005-3325
Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote malicious ...
Acid Analysis Console For Intrusion Databases 0.9.6b20
Secureideas Basic Analysis And Security Engine 1.2
1 EDB exploit
5
CVSSv2
CVE-2006-1505
base_maintenance.php in Basic Analysis and Security Engine (BASE) prior to 1.2.4 (melissa), when running in standalone mode, allows remote malicious users to bypass authentication, possibly by setting the standalone parameter to "yes".
Basic Analysis And Security Engine Base 1.1.2 Zora
Basic Analysis And Security Engine Base 1.1.3 Lynn
Basic Analysis And Security Engine Base 1.2 Betty
Basic Analysis And Security Engine Base 1.1.4 Cheryl
Basic Analysis And Security Engine Base 1.1 Elizabeth
Basic Analysis And Security Engine Base 1.2.1 Kris
Basic Analysis And Security Engine Base 1.2.2 Cindy
4.3
CVSSv2
CVE-2009-4837
Multiple cross-site scripting (XSS) vulnerabilities in Basic Analysis and Security Engine (BASE) prior to 1.4.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) sig[1] parameter to base/base_qry_main.php, or the time[0][1] parameter to (2) base/ba...
Secureideas Basic Analysis And Security Engine
Secureideas Basic Analysis And Security Engine 1.2
Secureideas Basic Analysis And Security Engine 1.1.4
Secureideas Basic Analysis And Security Engine 1.3.6
Secureideas Basic Analysis And Security Engine 1.2.7
Secureideas Basic Analysis And Security Engine 1.2.2
Secureideas Basic Analysis And Security Engine 1.2.1
Secureideas Basic Analysis And Security Engine 1.1.2
Secureideas Basic Analysis And Security Engine 1.1
Secureideas Basic Analysis And Security Engine 1.3.8
Secureideas Basic Analysis And Security Engine 1.3.9
Secureideas Basic Analysis And Security Engine 1.2.4
Secureideas Basic Analysis And Security Engine 1.2.5
Secureideas Basic Analysis And Security Engine 1.2.6
Secureideas Basic Analysis And Security Engine 1.2.0
Secureideas Basic Analysis And Security Engine 1.1.3
Secureideas Basic Analysis And Security Engine 1.3.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »