Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors.
References
Configurations
History
No history.
Information
Published : 2007-10-18 22:17
Updated : 2024-02-28 11:01
NVD link : CVE-2007-5578
Mitre link : CVE-2007-5578
CVE.ORG link : CVE-2007-5578
JSON object : View
Products Affected
secureideas
- basic_analysis_and_security_engine
CWE
CWE-287
Improper Authentication