AlstraSoft Affiliate Network Pro 7.2 allows remote attackers to obtain sensitive information via a direct request to scripts such as (1) togateway.php and (2) other unspecified scripts.
https://exchange.xforce.ibmcloud.com/vulnerabilities/23078
http://www.vupen.com/english/advisories/2005/2455
http://secunia.com/advisories/17605/