CVE-2009-4590

CVE-2009-4590

EPSS 1.1%

Cross-site scripting (XSS) vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://base.secureideas.net/news.php http://secunia.com/advisories/37147 http://secureideas.cvs.sourceforge.net/viewvc/secureideas/base-php4/docs/CHANGELOG?revision=1.359&view=markup https://exchange.xforce.ibmcloud.com/vulnerabilities/53968 http://www.vupen.com/english/advisories/2009/3054