CVE-2001-1053 Information

Description

AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-07/0249.html http://www.adcycle.com/cgi-bin/download.cgi?type=UNIX&version=1.17 http://www.securityfocus.com/bid/3032 https://exchange.xforce.ibmcloud.com/vulnerabilities/6837