SQL injection vulnerability in www/delivery/axmlrpc.php (aka the XML-RPC delivery invocation script) in Revive Adserver prior to 3.0.2, and OpenX Source 2.8.11 and previous versions, allows remote malicious users to execute arbitrary SQL commands via the what parameter to an XML-RPC method.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openx openx 2.8.10 |
||
openx openx |
||
revive-adserver revive adserver |
||
revive-adserver revive adserver 3.0.0 |