{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-18T15:06:32.504","vulnerabilities":[{"cve":{"id":"CVE-2009-4838","sourceIdentifier":"cve@mitre.org","published":"2010-05-06T12:47:23.580","lastModified":"2026-06-16T23:14:27.223","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SQL injection vulnerability in base_ag_common.php in Basic Analysis and Security Engine (BASE) before 1.4.3.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters.  NOTE: some of these details are obtained from third party information."},{"lang":"es","value":"Vulnerabilidad de inyección SQL en base_ag_common.php en Basic Analysis y Security Engine (BASE) anterior v1.4.3.1 permite a atacantes remotos ejecutar comandos SQL de su elección a través de parámetros no especificados. NOTA: algunos de estos detalles han sido obtenidos a partir de terceros.\r\n"}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:*:*:*:*:*:*:*:*","versionEndIncluding":"1.4.3","matchCriteriaId":"3AFAB850-297F-488C-B0CC-823F3815E9D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.1:*:*:*:*:*:*:*","matchCriteriaId":"B1B2A52D-E8D4-4BA4-8E72-AC5192DE0D4C"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.1.2:*:*:*:*:*:*:*","matchCriteriaId":"F3385377-F113-43BF-B7EA-11D2E3128CE4"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.1.3:*:*:*:*:*:*:*","matchCriteriaId":"BB7528DA-7B3C-4AD6-9F00-3F4288C7ACC2"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.1.4:*:*:*:*:*:*:*","matchCriteriaId":"B7097AFD-1F68-4275-BB1A-FFADA8A419F9"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2:*:*:*:*:*:*:*","matchCriteriaId":"A0826792-D304-40F1-A9E8-F120B70CF677"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.0:*:*:*:*:*:*:*","matchCriteriaId":"1B3F401F-C1D8-44C1-AF7D-56F4E003D080"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.1:*:*:*:*:*:*:*","matchCriteriaId":"906EE821-2A84-4166-9F25-4D1FBC8CAF20"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.2:*:*:*:*:*:*:*","matchCriteriaId":"D97C7A9E-D341-4D51-9550-F86604D5B802"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.4:*:*:*:*:*:*:*","matchCriteriaId":"50493815-A159-4AD4-9570-16A0873EE0E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.5:*:*:*:*:*:*:*","matchCriteriaId":"A4CDA655-E362-4F1C-9449-A6A137EF3156"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.6:*:*:*:*:*:*:*","matchCriteriaId":"7B5BB059-63B9-43C7-88BA-CB8855180B5F"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.2.7:*:*:*:*:*:*:*","matchCriteriaId":"411F66D7-8D61-4756-9F41-9E2EF5C29F59"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.3.5:*:*:*:*:*:*:*","matchCriteriaId":"6E411919-C5CA-48CA-91ED-F21FC505D4C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.3.6:*:*:*:*:*:*:*","matchCriteriaId":"B1871740-5E57-4E16-AFDF-8B3456A38FE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.3.8:*:*:*:*:*:*:*","matchCriteriaId":"A314420F-CCF2-4134-89CF-9EA8A418A9FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.3.9:*:*:*:*:*:*:*","matchCriteriaId":"C7C3D1A1-632C-410A-AE06-0679D4A57C7F"}]}]}],"references":[{"url":"http://base.secureideas.net/news.php","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/35222","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://secureideas.cvs.sourceforge.net/viewvc/secureideas/base-php4/base_ag_common.php?sortby=date&view","source":"cve@mitre.org"},{"url":"http://base.secureideas.net/news.php","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/35222","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://secureideas.cvs.sourceforge.net/viewvc/secureideas/base-php4/base_ag_common.php?sortby=date&view","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}