Vulnerabilities > Adcycle

DATE CVE VULNERABILITY TITLE RISK
2001-12-25 CVE-2001-1226 Remote SQL Query Modification vulnerability in AdCycle
AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database.
network
low complexity
adcycle
5.0
2001-07-13 CVE-2001-1053 Unspecified vulnerability in Adcycle
AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument.
network
low complexity
adcycle
critical
10.0
2001-06-27 CVE-2001-0425 Unspecified vulnerability in Adcycle 0.77/0.78B
AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information.
network
low complexity
adcycle
7.5
2001-01-09 CVE-2000-1161 Unspecified vulnerability in Adcycle 0.77B
The installation of AdCycle banner management system leaves the build.cgi program in a web-accessible directory, which allows remote attackers to execute the program and view passwords or delete databases.
network
low complexity
adcycle
7.5