Unrated severityNVD Advisory· Published May 31, 2006· Updated Jun 16, 2026
CVE-2006-2690
CVE-2006-2690
Description
An unspecified script in EVA-Web 2.1.2 and earlier, probably index.php, allows remote attackers to obtain the full path of the web server via invalid (1) perso or (2) aide parameters.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.