5 matches found
phpAdsNew cross-site scripting vulnerability
Overview phpAdsNew, an open source web advertising management system, contains a cross-site scripting vulnerability. Note that phpAdsNew is now called "Openads." The products listed below use the same module as phpAdsNew thus they are also affected by the vulnerability. - phpPgAds 2.0.9-pr1 and...
CVE-2007-2047
Openads 2.3 (aka Max Media Manager, MMM) is affected by a CRLF injection in www/delivery/ck.php, tractable before 0.3.31-alpha-pr3. The vulnerability allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via CRLF sequences in the destination parameter. Impac...
[Full-disclosure] [OPENADS-SA-2007-004] Max Media Manager v0.1.29-rc and v0.3.31-alpha-pr2 vulnerability fixed
======================================================================== Openads security advisory OPENADS-SA-2007-004 ------------------------------------------------------------------------ Advisory ID: OPENADS-SA-2007-004 Date: 2007-Apr-11 Security risk: medium risk Applications affetced: Max...
[OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability fixed
======================================================================== Openads security advisory OPENADS-SA-2007-002 ------------------------------------------------------------------------ Advisory ID: OPENADS-SA-2007-002 Date: 2007-Jan-25 Security risk: low risk Applications affetced: Max Med...
JVN#07274813 phpAdsNew cross-site scripting vulnerability
The products listed below use the same module as phpAdsNew thus they are also affected by the vulnerability. All users of these products are encouraged to update to the latest versions provided by the developer. phpPgAds 2.0.9-pr1 and earlier Max Media Manager v0.1.29-rc and earlier Max Media...