5
CVE-2006-1505
- EPSS 1.7%
- Veröffentlicht 30.03.2006 01:06:00
- Zuletzt bearbeitet 16.06.2026 22:23:05
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginbase_maintenance.php in Basic Analysis and Security Engine (BASE) before 1.2.4 (melissa), when running in standalone mode, allows remote attackers to bypass authentication, possibly by setting the standalone parameter to "yes".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Basic Analysis And Security Engine ≫ Base Version1.1.2_zora
Basic Analysis And Security Engine ≫ Base Version1.1.3_lynn
Basic Analysis And Security Engine ≫ Base Version1.1.4_cheryl
Basic Analysis And Security Engine ≫ Base Version1.1_elizabeth
Basic Analysis And Security Engine ≫ Base Version1.2.1_kris
Basic Analysis And Security Engine ≫ Base Version1.2.2_cindy
Basic Analysis And Security Engine ≫ Base Version1.2_betty
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.7% | 0.742 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://cvs.sourceforge.net/viewcvs.py/secureideas/base-php4/docs/CHANGELOG?rev=1.233&view=markup
http://secunia.com/advisories/19510
http://www.osvdb.org/24101
http://www.securityfocus.com/bid/17354
http://www.vupen.com/english/advisories/2006/1192