tr1.php in Yourfreeworld Stylish Text Ads Script allows remote attackers to obtain the installation path via an invalid id parameter, which leaks the path in an error message. NOTE: this issue might be resultant from CVE-2006-2508.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/26571http://archives.neohapsis.com/archives/bugtraq/2006-05/0381.html
