CVE-2005-0790

Name of the Vulnerable Software and Affected Versions phpAdsNew version 2.0.4

Description The issue allows remote attackers to obtain sensitive information via direct requests to various PHP files, including (1) "lib-xmlrpcs.inc.php", (2) "maintenance-activation.php", (3) "maintenance-cleantables.php", (4) "maintenance-autotargeting.php", (5) "maintenance-reports.php", (6) "phpads.php", (7) "remotehtmlview.php", (8) "click.php", (9) "adcontent.php". These requests can reveal the path in a PHP error message.

Recommendations For phpAdsNew version 2.0.4, consider restricting access to the mentioned PHP files to minimize the risk of exploitation. As a temporary workaround, limit direct requests to these files until a patch is available.