phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the application installation path and other sensitive information via direct requests to (1) create.php, and if display_errors is enabled, (2) lib-updates.inc.php, (3) lib-targetstats.inc.php, (4) lib-size.inc.php, (5) lib-misc-stats.inc.php, (6) lib-hourly-hosts.inc.php, (7) lib-hourly.inc.php, (8) lib-history.inc.php, and (9) graph-daily.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-17T11:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-11-17T00:00:00
Link: CVE-2005-3645
JSON object: View
NVD Information
Status : Modified
Published: 2005-11-17T11:02:00.000
Modified: 2017-07-11T01:33:15.813
Link: CVE-2005-3645
JSON object: View
Redhat Information
No data.
CWE