Basilic contains a flaw that is triggered when input passed via the diff.php script is not properly verified before being used in the 'file' parameter. This may allow a remote attacker to execute arbitrary commands with system privileges.
Remote / Network Access
Loss of Integrity
OSVDB is not aware of a solution for this vulnerability.