CVE-2001-1224: CVE-2001-1224

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2001-1224

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

get_input in adrotate.pm for Les VanBrunt AdRotate Pro 2.0 allows remote attackers to modify the database and possibly execute arbitrary commands via a SQL code injection attack.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Les VanBrunt AdRotate Pro SQL命令注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AdRotate Pro是一个免费的Perl脚本包，用来在网页上轮换放置广告条。它包括管理工具，后台使用MySQL驱动。 AdRotate Pro存在输入验证漏洞，可以使远程攻击者非法操作数据库。软件包中有一个adrotate.pm的模块，其中的"get_input"过程来处理客户端的输入，结果放在'in'关联数组里。AdRotate脚本用'in'中的值构造SQL语句而不对值进行合法性检查。这样使通过SQL命令注入的手段非法操作数据库的内容成为可能。因为一些数据库的内容会直接在shell命令中被使用到，

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2001-1224

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2001-1224

Please Login to view more intelligence information

http://www.securityfocus.com/bid/3739vdb-entryx_refsource_BID
http://www.securityfocus.com/archive/1/246994mailing-listx_refsource_BUGTRAQ
http://www.iss.net/security_center/static/7736.phpvdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2001-1224

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2001-1224

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2001-1224

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2001-1224

III. Intelligence Information for CVE-2001-1224

New Vulnerabilities

V. Comments for CVE-2001-1224

Leave a comment