108 matches found
CVE-2005-0790
phpAdsNew 2.0.4 allows remote attackers to obtain sensitive information via a direct request to 1 lib-xmlrpcs.inc.php, 2 maintenance-activation.php, 3 maintenance-cleantables.php, 4 maintenance-autotargeting.php, 5 maintenance-reports.php, 6 phpads.php, 7 remotehtmlview.php, 8 click.php, 9...
PHPAdsNew 2.0.4 - 'AdFrame.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/12803/info phpAdsNew is reportedly affected by a remote cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...
PHPAdsNew 2.0.4 - AdFrame.php Cross-Site Scripting
PHPAdsNew 2.0.4 - AdFrame.php Cross-Site Scripting source: https://www.securityfocus.com/bid/12803/info phpAdsNew is reportedly affected by a remote cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...
SQL-инъекция в phpAdsNew
--------------------------------------------------------- SQL-инъекция в phpAdsNew --------------------------------------------------------- Автор: Григоров Роман Дата: Январь 13, 2005 e-mail: roman at mosk dot ru Icq: 157535663 --------------------------------------------------------- Уязвимый...
phpAdsNew helperfunction.php Remote File Inclusion
It is possible to make the remote host include PHP files hosted on a third-party server using PHPAdsNew. An attacker may use this flaw to inject arbitrary code in the remote host and gain a shell with the privileges of the HTTP server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2001-1054
PHPAdsNew PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable...
CVE-2001-1054
The CVE-2001-1054 vulnerability affects PHPAdsNew, allowing a remote attacker to include arbitrary PHP files hosted on third‑party servers via an HTTP request that sets the includedir variable. This constitutes a Remote File Inclusion flaw in the PHPAdsNew helperfunction.php context, enabling arb...
CVE-2001-1054
PHPAdsNew PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable...