CVE-2006-2690
EVA-Web 2.1.2 and earlier contains a path-disclosure vulnerability in an unspecified script (likely index.php). Remote attackers can obtain the full server path via invalid parameters perso or aide. The CVSS v2 base score is 7.8 (HIGH). Exploitation status and concrete remediation are not provide...