CVE-2012-3835

AlienVault OSSIM 3.1 - Cross-Site Scripting via URL Parameter or Time Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-3835. PoCs published by muts, Stefan Schurtz.

AI-analyzed exploit summary This exploit demonstrates a reflected XSS vulnerability in AlienVault's 'top.php' and a blind SQL injection in 'base_qry_main.php' to extract the admin MD5 hash. It uses a binary search algorithm to efficiently enumerate the hash.

Description

Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to top.php or (2) time[0][0] parameter to forensics/base_qry_main.php, which is not properly handled in an error page.

Exploits (2)

exploitdb WORKING POC VERIFIED
by muts · pythonwebappsphp
https://www.exploit-db.com/exploits/20062

This exploit demonstrates a reflected XSS vulnerability in AlienVault's 'top.php' and a blind SQL injection in 'base_qry_main.php' to extract the admin MD5 hash. It uses a binary search algorithm to efficiently enumerate the hash.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: AlienVault OSSIM
Auth required
Prerequisites: Valid session cookie · Access to the vulnerable AlienVault OSSIM instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Stefan Schurtz · textwebappsphp
https://www.exploit-db.com/exploits/18800

The exploit demonstrates SQL injection and XSS vulnerabilities in Alienvault OSSIM Open Source SIEM 3.1. It includes crafted URLs that exploit input validation flaws in the 'base_qry_main.php' and 'top.php' endpoints.

Classification
Working Poc 95%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Reliable
Target: Alienvault OSSIM Open Source SIEM 3.1
Auth required
Prerequisites: Access to the target application · Authentication credentials for SQLi
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/53331
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18800
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/49005
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/75297

Scores

EPSS 0.0223
EPSS Percentile 80.4%

Details

CWE
CWE-79
Status published
Products (1)
alienvault/open_source_security_information_management 3.1
Published Jul 03, 2012
Tracked Since Feb 18, 2026