AdCycle.AdLogin.pm.Authentication.Bypass

description-logoDescription

It indicates a attacker attempted to exploit a Authentication Bypass Vulnerability in AdCycle. AdCylce is a series of scripts that perform ad rotation on a website which uses a MySQL as a backend. The user authentication script fails to properly sanitize user input which could allow a malicious attack to alter the logic of the login script therby executing arbitrary MySQL commands.

affected-products-logoAffected Products

Adcycle.com Adcycle 1.15 and earlier versions

Impact logoImpact

Authentication Bypass

recomended-action-logoRecommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)