Vulnerability Description
AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adcycle | Adcycle | 1.12 |
References
- http://www.iss.net/security_center/static/7762.phpVendor Advisory
- http://www.securityfocus.com/archive/1/247126Vendor Advisory
- http://www.securityfocus.com/bid/3741Vendor Advisory
- http://www.iss.net/security_center/static/7762.phpVendor Advisory
- http://www.securityfocus.com/archive/1/247126Vendor Advisory
- http://www.securityfocus.com/bid/3741Vendor Advisory
FAQ
What is CVE-2001-1226?
CVE-2001-1226 is a vulnerability with a CVSS score of 5.0 (MEDIUM). AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database.
How severe is CVE-2001-1226?
CVE-2001-1226 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1226?
Check the references section above for vendor advisories and patch information. Affected products include: Adcycle Adcycle.