PublicDate: 2006-05-31 10:06:00 UTC
Candidate: CVE-2006-2685
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2685
Description:
 PHP remote file inclusion vulnerability in Basic Analysis and Security
 Engine (BASE) 1.2.4 and earlier, with register_globals enabled, allows
 remote attackers to execute arbitrary PHP code via a URL in the BASE_path
 parameter to (1) base_qry_common.php, (2) base_stat_common.php, and (3)
 includes/base_include.inc.php.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_acidbase: ignored (reached end-of-life)
edgy_acidbase: released (1.2.5-1)
feisty_acidbase: released (1.2.5-1)
gutsy_acidbase: released (1.2.5-1)
hardy_acidbase: released (1.2.5-1)
intrepid_acidbase: released (1.2.5-1)
jaunty_acidbase: released (1.2.5-1)
karmic_acidbase: released (1.2.5-1)
devel_acidbase: released (1.2.5-1)
upstream_acidbase: needs-triage