EVA-Web index.php Multiple Variable Path Disclosure

2006-05-27T07:50:03
ID OSVDB:26012
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2006-05-27T07:50:03

Description

Manual Testing Notes

/?perso=full path /?aide=full path

References:

Vendor URL: http://spip-edu.edres74.net/ Secunia Advisory ID:20279 Related OSVDB ID: 26010 Related OSVDB ID: 26009 Related OSVDB ID: 26011 Other Advisory URL: http://pridels.blogspot.com/2006/05/eva-web-212-vuln.html CVE-2006-2690