CVE-2012-1198

Published: Feb 18, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote attackers to execute arbitrary code by uploading contents of the file with an executable extension via a create action, then accessing it via a view action.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

base-baseagmain-security-bypass(73201)

vdb-entry

x_refsource_XF

51979

vdb-entry

x_refsource_BID

http://packetstormsecurity.org/files/109663/BASE-1.4.5-Remote-File-Inclusion-Shell-Creation.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-1198

Description

Affected Products

References