Information Disclosure Vulnerability in phpAdsNew and phpPgAds 2.0.6

Information Disclosure Vulnerability in phpAdsNew and phpPgAds 2.0.6

CVE-2005-3645 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the application installation path and other sensitive information via direct requests to (1) create.php, and if display_errors is enabled, (2) lib-updates.inc.php, (3) lib-targetstats.inc.php, (4) lib-size.inc.php, (5) lib-misc-stats.inc.php, (6) lib-hourly-hosts.inc.php, (7) lib-hourly.inc.php, (8) lib-history.inc.php, and (9) graph-daily.php.

Learn more about our Web Application Penetration Testing UK.