Candidate: CVE-2009-4839
PublicDate: 2010-05-06 12:47:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4839
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in Basic Analysis and
 Security Engine (BASE), possibly 1.4.4 and earlier, allow remote attackers
 to inject arbitrary web script or HTML via unspecified parameters to (1)
 admin/base_roleadmin.php, (2) admin/base_useradmin.php, (3)
 base_conf_contents.php, (4) base_qry_sqlcalls.php, and (5)
 base_ag_main.php.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_acidbase:
upstream_acidbase: released (1.4.5)
dapper_acidbase: ignored (reached end-of-life)
hardy_acidbase: ignored (reached end-of-life)
jaunty_acidbase: ignored (reached end-of-life)
karmic_acidbase: ignored (reached end-of-life)
lucid_acidbase: ignored (reached end-of-life)
maverick_acidbase: not-affected (1.4.5-1)
natty_acidbase: not-affected (1.4.5-1)
oneiric_acidbase: not-affected (1.4.5-1)
precise_acidbase: not-affected (1.4.5-1)
quantal_acidbase: not-affected (1.4.5-1)
raring_acidbase: not-affected (1.4.5-1)
saucy_acidbase: DNE
devel_acidbase: DNE