AdLogin.pm in AdCycle 1.15 and previous versions allows remote malicious users to bypass authentication and gain privileges by injecting SQL code in the $password argument.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adcycle adcycle 1.12 |
||
adcycle adcycle 1.13 |
||
adcycle adcycle 1.14 |
||
adcycle adcycle 0.78b |
||
adcycle adcycle 1.0 |
||
adcycle adcycle 1.15 |
||
adcycle adcycle 0.77 |
||
adcycle adcycle 0.77b |