CVE-2001-1053

AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument.

Date published : 2002-06-25

http://www.securityfocus.com/bid/3032

http://archives.neohapsis.com/archives/bugtraq/2001-07/0249.html