phpadsnew phpadsnew 2.0.4 pr1 vulnerabilities and exploits

(subscribe to this query)

phpAdsNew 2.0.4 allows remote malicious users to obtain sensitive information via a direct request to (1) lib-xmlrpcs.inc.php, (2) maintenance-activation.php, (3) maintenance-cleantables.php, (4) maintenance-autotargeting.php, (5) maintenance-reports.php, (6) phpads.php, (7) remo...

Phpadsnew Phpadsnew 2.0.4 Pr1

phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote malicious users to obtain the application installation path and other sensitive information via direct requests to (1) create.php, and if display_errors is enabled, (2) lib-updates.inc.php, (3) lib-targetsta...

Phpadsnew Phpadsnew 2 Dev 2001-09-30 Phpadsnew Phpadsnew 2.0.6 Phpadsnew Phpadsnew 2.0.5 Phpadsnew Phpadsnew 2.0.4 Pr1 Phpadsnew Phpadsnew 2.0 Beta5 Phppgads Phppgads 2.0.6 Phpadsnew Phpadsnew 2.0 Beta6 Phpadsnew Phpadsnew 2 Dev 2001-10-09

Multiple SQL injection vulnerabilities in lib-sessions.inc.php in phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allow remote malicious users to execute arbitrary SQL commands via the sessionID parameter in (1) logout.php and (2) index.php.

Phpadsnew Phpadsnew 2 Dev 2001-09-30 Phpadsnew Phpadsnew 2.0.6 Phpadsnew Phpadsnew 2.0.7 Rc1 Phpadsnew Phpadsnew 2.0.5 Phpadsnew Phpadsnew 2.0.4 Pr1 Phpadsnew Phpadsnew 2.0 Beta5 Phppgads Phppgads 2.0.6 Phpadsnew Phpadsnew 2.0 Beta6 Phpadsnew Phpadsnew 2 Dev 2001-10-09

Cross-site scripting (XSS) vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when register_globals is enabled, allows remote malicious users to inject arbitrary web script or HTML via the refresh parameter.

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook