Openads (phpAdsNew) <=c 2.0.8 'lib-remotehost.inc.php' Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25277/info Openads formerly known as phpAdsNew is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the...

OpenX phpAdsNew Remote File Inclusion

Exploit Title: OpenX phpAdsNew Remote File inclusion Vulnerability Date: 2010/07/20 Author: ViRuS Qalaa Email: [email protected] My Sites : www.pal-mafia.com & www.vbspiders.com Script url: http://www.opensourcescripts.com/dir/PHP/AdManagement/phpadsnew11.html download Script:...

OpenAds Lib-RemoteHost.INC.PHP远程文件包含漏洞

OpenAds是一款基于PHP的WEB应用程序。 OpenAds不正确过滤用户提交的URI输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是脚本'Lib-RemoteHost.INC.PHP'对用户提交的'phpAdsgeoPlugin'参数缺少过滤，指定远程服务器上的任意文件作为包含对象，可导致以WEB权限执行任意命令。 phpAdsNew phpAdsNew 2.0.8 -pr1 phpAdsNew phpAdsNew 2.0.8 phpAdsNew phpAdsNew 2.0.7 rc1 phpAdsNew phpAdsNew 2.0.7 phpAdsNew...