CVE-2001-0425

AdCycle 0.78b - Privilege Escalation

Title source: llm

Description

AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Neil K · perlremotecgi

https://www.exploit-db.com/exploits/20642

View Code ZIP pw:eip

References (2)

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/2393

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/archive/1/163942

Scores

EPSS 0.0459

EPSS Percentile 89.3%

Details

Status published

Products (2)

adcycle/adcycle 0.77

adcycle/adcycle 0.78b

Published Jun 27, 2001

Tracked Since Feb 18, 2026