NuytsTech Security

CVE-2007-5578

by ·

Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors.

Date published : 2007-10-18

http://www.securityfocus.com/bid/24315

http://sourceforge.net/project/shownotes.php?group_id=103348&release_id=521723

Tags: