2005-02-15 05:00:00
mitre
PUBLISHED
ELOG before 2.5.7 allows remote attackers to bypass authentication and download a configuration file that contains a sensitive write password via a modified URL.