Vulnerabilities

CVE-2013-7149

by Fred · 27/12/2013

SQL injection vulnerability in www/delivery/axmlrpc.php (aka the XML-RPC delivery invocation script) in Revive Adserver before 3.0.2, and OpenX Source 2.8.11 and earlier, allows remote attackers to execute arbitrary SQL commands via the what parameter to an XML-RPC method.

Date published : 2013-12-27

http://www.securityfocus.com/archive/1/530471/30/0/threaded

Revive Adserver Security Advisory REVIVE-SA-2013-001

Similar

Tags: Cybersecurity Alert