CGI abuses : ELOG Web Logbook <2.6.1 multiple flaws

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.56867
Category:	CGI abuses
Title:	ELOG Web Logbook <2.6.1 multiple flaws
Summary:	NOSUMMARY
Description:	Description: The remote version of ELOG, according to its version number, is vulnerable to an arbitrary file disclosure vulnerability as a result of insufficient filtering of user information. Solution : Upgrade to version 2.6.1 or later. http://midas.psi.ch/elogs/Forum/1608 Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	BugTraq ID: 16315 Common Vulnerability Exposure (CVE) ID: CVE-2006-0347 http://www.securityfocus.com/bid/16315 Debian Security Information: DSA-967 (Google Search) http://www.debian.org/security/2006/dsa-967 http://midas.psi.ch/elog/download/ChangeLog http://www.osvdb.org/22647 http://secunia.com/advisories/18533 http://secunia.com/advisories/18783 http://www.vupen.com/english/advisories/2006/0262 XForce ISS Database: elog-dotdot-directory-traversal(24224) https://exchange.xforce.ibmcloud.com/vulnerabilities/24224 Common Vulnerability Exposure (CVE) ID: CVE-2006-0348 http://www.osvdb.org/22646 XForce ISS Database: elog-elogd-format-string(24221) https://exchange.xforce.ibmcloud.com/vulnerabilities/24221
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com