Vulnerabilities > Secureideas

DATE	CVE	VULNERABILITY TITLE	RISK
2007-11-29	CVE-2007-6156	Cross-Site Scripting vulnerability in Secureideas Basic Analysis and Security Engine Multiple cross-site scripting (XSS) vulnerabilities in base_qry_main.php in Base Analysis and Security Engine (BASE) before 1.3.9 allow remote attackers to inject arbitrary web script or HTML via the (1) sig[0] and (2) sig[1] parameters. network secureideas CWE-79	4.3
2007-10-18	CVE-2007-5578	Improper Authentication vulnerability in Secureideas Basic Analysis and Security Engine 1.3.6 Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors. network low complexity secureideas CWE-287	7.5
2005-10-27	CVE-2005-3325	SQL Injection vulnerability in multiple products Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote attackers to execute arbitrary SQL commands via the sig[1] parameter and possibly other parameters. network low complexity acid secureideas CWE-89	7.5

Vulnerabilities > Secureideas {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Secureideas"}]}