CVE-2009-4838

Name of the Vulnerable Software and Affected Versions Basic Analysis and Security Engine (BASE) versions prior to 1.4.3.1

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The issue is related to the base ag common.php file and involves unspecified parameters.

Recommendations For versions prior to 1.4.3.1, update to version 1.4.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the base ag common.php file to minimize the risk of exploitation. Avoid using unspecified parameters in the affected file until the issue is resolved.