CVE-2012-3834

AlienVault Open Source Security Information Management 3.1 - Authenticated SQL Injection via time[0][0] Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-3834. PoCs published by Stefan Schurtz.

AI-analyzed exploit summary The exploit demonstrates SQL injection and XSS vulnerabilities in Alienvault OSSIM Open Source SIEM 3.1. It includes crafted URLs that exploit input validation flaws in the 'base_qry_main.php' and 'top.php' endpoints.

Description

SQL injection vulnerability in forensics/base_qry_main.php in AlienVault Open Source Security Information Management (OSSIM) 3.1 allows remote authenticated users to execute arbitrary SQL commands via the time[0][0] parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Stefan Schurtz · textwebappsphp
https://www.exploit-db.com/exploits/18800

The exploit demonstrates SQL injection and XSS vulnerabilities in Alienvault OSSIM Open Source SIEM 3.1. It includes crafted URLs that exploit input validation flaws in the 'base_qry_main.php' and 'top.php' endpoints.

Classification
Working Poc 95%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Reliable
Target: Alienvault OSSIM Open Source SIEM 3.1
Auth required
Prerequisites: Access to the target application · Authentication credentials for SQLi
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC
pythonwebappsphp
https://www.exploit-db.com/exploits/20062

This Python script demonstrates a reflected XSS vulnerability in AlienVault's 'top.php' and a blind SQL injection in 'base_qry_main.php' to extract the admin MD5 hash. It uses a binary search algorithm to efficiently enumerate the hash.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: AlienVault OSSIM
Auth required
Prerequisites: Valid session cookie · Access to the target URL
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/53331
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18800
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/49005
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/75290

Scores

EPSS 0.0144
EPSS Percentile 69.7%

Details

CWE
CWE-89
Status published
Products (1)
alienvault/open_source_security_information_management 3.1
Published Jul 03, 2012
Tracked Since Feb 18, 2026