|
Family: CGI abuses --> Category: attack
phpAdsNew Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of a XSS in phpAdsNew
Detailed Explanation for this Vulnerability Test
phpAdsNew is an open-source ad server, with an integrated banner
management interface and tracking system for gathering statistics.
With phpAdsNew you can easily rotate paid banners and your own
in-house advertisements. You can even integrate banners from
third party advertising companies.
The product has been found to contain two vulnerabilities:
* Path disclosure vulnerability
* Cross Site Scripting
A possible hacker may use the cross site scripting bug to preform phishing
attacks.
Risk factor: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|