AdLibrary.pm in AdCycle 0.78b allows remote malicious users to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adcycle adcycle 0.77 |
||
adcycle adcycle 0.78b |