Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> CGI abuses >> phpAdsNew Multiple Vulnerabilities

Vulnerability Assessment Details

phpAdsNew Multiple Vulnerabilities
Vulnerability Assessment Summary
Searches for the existence of a XSS in phpAdsNew

Detailed Explanation for this Vulnerability Assessment

phpAdsNew is an open-source ad server, with an integrated banner
management interface and tracking system for gathering statistics.
With phpAdsNew you can easily rotate paid banners and your own
in-house advertisements. You can even integrate banners from
third party advertising companies.

The product has been found to contain two vulnerabilities:
* Path disclosure vulnerability
* Cross Site Scripting

A possible hacker may use the cross site scripting bug to preform phishing
attacks.

Risk factor: Medium

Networks Security ID: 12803

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Noam Rathaus
Cables, Connectors


Watchguard XCS 570 Firewall SuperMicro 1U Server Intel 4GB VPN Router LINUX 🍁 picture

Watchguard XCS 570 Firewall SuperMicro 1U Server Intel 4GB VPN Router LINUX 🍁

$145.79


PFSENSE 15

PFSENSE 15" Depth Server Router Firewall Supermicro X11SSH-F E3-1240 V5 32GB RAM

$382.00


1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports picture

1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports

$149.00


Dell PowerEdge R730xd Server 2.60Ghz 32-Core 64GB 800GB SSD Debian Linux picture

Dell PowerEdge R730xd Server 2.60Ghz 32-Core 64GB 800GB SSD Debian Linux

$836.80


Domino Lotus Server 5.0.7 for OS/2 WSeB, RH Linux 6, Solaris, AIX, HP-UX, Win NT picture

Domino Lotus Server 5.0.7 for OS/2 WSeB, RH Linux 6, Solaris, AIX, HP-UX, Win NT

$60.00


Red Hat Enterprise Linux 5 Server - New and Sealed picture

Red Hat Enterprise Linux 5 Server - New and Sealed

$16.99


2 x HP ProLiant BL460c (447707-B21) Blade Servers No RAM No HDD picture

2 x HP ProLiant BL460c (447707-B21) Blade Servers No RAM No HDD

$30.00


IBM CS821 20-Core 2.827GHz 128Gb 1.92Tb SSD 1U Linux Server - 8005-12N Power 8 picture

IBM CS821 20-Core 2.827GHz 128Gb 1.92Tb SSD 1U Linux Server - 8005-12N Power 8

$449.96


POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives picture

POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives

$179.99


8x 240GB SSD 1U Rackmount Deduplication Compression Backup RAID Server X10DRW-iT picture

8x 240GB SSD 1U Rackmount Deduplication Compression Backup RAID Server X10DRW-iT

$499.00


Discussions

No Discussions have been posted on this vulnerability.