← voltar
CVE-2005-3645

CVE-2005-3645

EPSS 2.3%
phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the application installation path and other sensitive information via direct requests to (1) create.php, and if display_errors is enabled, (2) lib-updates.inc.php, (3) lib-targetstats.inc.php, (4) lib-size.inc.php, (5) lib-misc-stats.inc.php, (6) lib-hourly-hosts.inc.php, (7) lib-hourly.inc.php, (8) lib-history.inc.php, and (9) graph-daily.php.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://marc.info/?l=bugtraq&m=113165036315035&w=2http://seclists.org/lists/bugtraq/2005/Nov/0189.htmlhttp://secunia.com/advisories/17464/http://securityreason.com/securityalert/171https://exchange.xforce.ibmcloud.com/vulnerabilities/23043http://sourceforge.net/project/shownotes.php?group_id=36679&release_id=370942http://www.fitsec.com/advisories/FS-05-01.txthttp://www.osvdb.org/20735http://www.osvdb.org/20736http://www.osvdb.org/20737http://www.osvdb.org/20738http://www.osvdb.org/20739