2 matches found
CVE-2011-3769
CVE-2011-3769 affects PHPads 2.0. The vulnerability allows remote disclosure of sensitive information: a direct request to a PHP file (e.g., ads.inc.php) can reveal the installation path in an error message. This is a partial confidentiality impact described by CVSSv2 (base score 5.0, MEDIUM). No...
CVE-2019-25503
CVE-2019-25503 affects PHPads 2.0. The vulnerability is an SQL injection in the bannerID parameter of click.php3, allowing unauthenticated attackers to craft values (e.g., SQL comments, extractvalue) to execute arbitrary queries and reveal data such as the current database name. The impact is hig...