Unrated severityNVD Advisory· Published Nov 17, 2005· Updated Apr 16, 2026

CVE-2005-3645

Description

phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allows remote attackers to obtain the application installation path and other sensitive information via direct requests to (1) create.php, and if display_errors is enabled, (2) lib-updates.inc.php, (3) lib-targetstats.inc.php, (4) lib-size.inc.php, (5) lib-misc-stats.inc.php, (6) lib-hourly-hosts.inc.php, (7) lib-hourly.inc.php, (8) lib-history.inc.php, and (9) graph-daily.php.

Affected products

Phpadsnew/Phpadsnew7 versions
cpe:2.3:a:phpadsnew:phpadsnew:2.0.4_pr1:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:phpadsnew:phpadsnew:2.0.4_pr1:*:*:*:*:*:*:*
- cpe:2.3:a:phpadsnew:phpadsnew:2.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:phpadsnew:phpadsnew:2.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:phpadsnew:phpadsnew:2.0_beta5:*:*:*:*:*:*:*
- cpe:2.3:a:phpadsnew:phpadsnew:2.0_beta6:*:*:*:*:*:*:*
- cpe:2.3:a:phpadsnew:phpadsnew:2_dev_2001-09-30:*:*:*:*:*:*:*
- cpe:2.3:a:phpadsnew:phpadsnew:2_dev_2001-10-09:*:*:*:*:*:*:*
Phppgads/Phppgads
cpe:2.3:a:phppgads:phppgads:2.0.6:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/17464/nvdPatchVendor Advisory
www.fitsec.com/advisories/FS-05-01.txtnvdVendor Advisory
www.vupen.com/english/advisories/2005/2380nvdVendor Advisory
marc.infonvd
seclists.org/lists/bugtraq/2005/Nov/0189.htmlnvd
securityreason.com/securityalert/171nvd
sourceforge.net/project/shownotes.phpnvd
www.osvdb.org/20735nvd
www.osvdb.org/20736nvd
www.osvdb.org/20737nvd
www.osvdb.org/20738nvd
www.osvdb.org/20739nvd
www.osvdb.org/20740nvd
www.osvdb.org/20741nvd
www.osvdb.org/20742nvd
www.osvdb.org/20743nvd
exchange.xforce.ibmcloud.com/vulnerabilities/23043nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000