← Back to branch summary

~wgrant/ubuntu-cve-tracker/main

« back to all changes in this revision

Viewing changes to active/CVE-2006-2685

  • Committer: Kees Cook
  • Date: 2008-09-19 21:55:36 UTC
  • Revision ID: kees.cook@canonical.com-20080919215536-xv2fttw2hoozmih4
update all Publication Dates

Show diffs side-by-side

added added

removed removed

Lines of Context:
active/CVE-2006-2685
1
1
Candidate: CVE-2006-2685
2
2
References:
3
3
Description:
 
4
 PHP remote file inclusion vulnerability in Basic Analysis and Security
 
5
 Engine (BASE) 1.2.4 and earlier, with register_globals enabled, allows
 
6
 remote attackers to execute arbitrary PHP code via a URL in the BASE_path
 
7
 parameter to (1) base_qry_common.php, (2) base_stat_common.php, and (3)
 
8
 includes/base_include.inc.php.
4
9
Ubuntu-Description:
5
10
Notes:
6
11
Bugs: