This page aggregates publicly disclosed CVE and security risk information related to adcycle, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-1226 | AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database. | [email protected] | 5.0 | 1.52% | 2001-12-25 | 2026-06-16 |
| CVE-2001-1053 | AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument. | [email protected] | 10.0 | 3.44% | 2001-07-13 | 2026-06-16 |
| CVE-2001-0425 | AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information. | [email protected] | 7.5 | 2.40% | 2001-06-27 | 2026-06-16 |
| CVE-2000-1161 | The installation of AdCycle banner management system leaves the build.cgi program in a web-accessible directory, which allows remote attackers to execute the program and view passwords or delete databases. | [email protected] | 7.5 | 1.39% | 2001-01-09 | 2026-06-16 |