CVE-2005-3645

2005-11-17T11:02:00
ID CVE-2005-3645
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:33:00

Description

phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the application installation path and other sensitive information via direct requests to (1) create.php, and if display_errors is enabled, (2) lib-updates.inc.php, (3) lib-targetstats.inc.php, (4) lib-size.inc.php, (5) lib-misc-stats.inc.php, (6) lib-hourly-hosts.inc.php, (7) lib-hourly.inc.php, (8) lib-history.inc.php, and (9) graph-daily.php. Upgrade to phpAdsNew version 2.0.7 : http://sourceforge.net/project/showfiles.php?group_id=11386

Upgrade to phpPgAds version 2.0.7 : http://sourceforge.net/project/showfiles.php?group_id=36679