Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Basic Analysis和Security Engine 'Base_Main.PHP' 安全绕过漏洞
Vulnerability Description
Basic Analysis和Security Engine (BASE) 1.3.8版本之前的版本向网络浏览器发送一个重定向指令但该指令并不存在,这会允许远程攻击者可以借助(1) base_main.php, (2) base_qry_alert.php, 以及其他可能的向量,绕过权限。
CVSS Information
N/A
Vulnerability Type
N/A