Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

653 matches found

Tenable Nessus
Tenable Nessusadded 2014/06/26 12:0 a.m.216 views

Revive Adserver 'www/delivery/axmlrpc.php' 'what' Parameter SQL Injection

The Revive Adserver install hosted on the remote web server is affected by a SQL injection vulnerability because the 'www/delivery/axmlrpc.php' script fails to properly sanitize user-supplied input passed to the 'what' parameter. This can allow a remote, unauthenticated attacker to execute...

7.5CVSS6.4AI score0.02011EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2014/06/26 12:0 a.m.16 views

Revive Adserver < 3.0.5 Multiple CSRF Vulnerabilities

According to its version number, the Revive Adserver install hosted on the remote web server is affected by multiple cross-site request forgery CSRF vulnerabilities. This can allow an attacker to delete data and cause service disruptions by enticing an authenticated user to follow a crafted URL...

6.8CVSS5.5AI score0.03099EPSS
Exploits2References2
securityvulns
securityvulnsadded 2014/06/14 12:0 a.m.77 views

[REVIVE-SA-2014-001] Revive Adserver 3.0.5 fixes CSRF vulnerability

======================================================================== Revive Adserver Security Advisory REVIVE-SA-2014-001 ------------------------------------------------------------------------ Advisory ID: REVIVE-SA-2014-001 CVE ID: CVE-2013-5954 Date: 2014-05-15 Security risk: Moderate...

6.8CVSS0.9AI score0.03099EPSS
Exploits2
securityvulns
securityvulnsadded 2014/01/09 12:0 a.m.100 views

[REVIVE-SA-2013-001] Revive Adserver 3.0.2 fixes SQL injection vulnerability

======================================================================== Revive Adserver Security Advisory REVIVE-SA-2013-001 ------------------------------------------------------------------------ Advisory ID: REVIVE-SA-2013-001 CVE ID: CVE-2013-7149 Date: 2013-12-20 Security risk: Critical...

7.5CVSS7.1AI score0.02011EPSS
Exploits1
NVD
NVDadded 2013/12/28 4:53 a.m.23 views

CVE-2013-7149

SQL injection vulnerability in www/delivery/axmlrpc.php aka the XML-RPC delivery invocation script in Revive Adserver before 3.0.2, and OpenX Source 2.8.11 and earlier, allows remote attackers to execute arbitrary SQL commands via the what parameter to an XML-RPC method...

7.5CVSS8.2AI score0.02011EPSS
Exploits1References3
Prion
Prionadded 2013/12/28 4:53 a.m.17 views

Sql injection

SQL injection vulnerability in www/delivery/axmlrpc.php aka the XML-RPC delivery invocation script in Revive Adserver before 3.0.2, and OpenX Source 2.8.11 and earlier, allows remote attackers to execute arbitrary SQL commands via the what parameter to an XML-RPC method...

7.5CVSS8.9AI score0.02011EPSS
Exploits1References3Affected Software2
CVE
CVEadded 2013/12/28 2:0 a.m.61 views

CVE-2013-7149

CVE-2013-7149 describes a SQL injection in Revive Adserver’s XML-RPC delivery script (www/delivery/axmlrpc.php) via the what parameter, affecting Revive Adserver &lt;= 3.0.1 and OpenX Source

7.5CVSS8.5AI score0.02011EPSS
Exploits1References3Affected Software2
VulnCheck KEV
VulnCheck KEVadded 2013/12/20 12:0 a.m.1 views

VulnCheck KEV: CVE-2013-7149

SQL injection vulnerability in www/delivery/axmlrpc.php aka the XML-RPC delivery invocation script in Revive Adserver before 3.0.2, and OpenX Source 2.8.11 and earlier, allows remote attackers to execute arbitrary SQL commands via the what parameter to an XML-RPC method...

7.5CVSS6.2AI score0.02011EPSS
Exploits1References1
FreeBSD
FreeBSDadded 2013/12/20 12:0 a.m.39 views

OpenX -- SQL injection vulnerability

Revive reports: An SQL-injection vulnerability was recently discovered and reported to the Revive Adserver team by Florian Sander. The vulnerability is known to be already exploited to gain unauthorised access to the application using brute force mechanisms, however other kind of attacks might be...

7.5CVSS6.7AI score0.02011EPSS
Exploits1References2
Packet Storm
Packet Stormadded 2010/11/08 12:0 a.m.22 views

Zeeways Adserver Cross Site Request Forgery / SQL Injection

Exploit Title: Zeeways Adserver Multiple Vulnerabilities Date: 06.11.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Zeeways Adserver Multip...

0.3AI score
Exploits0
0day.today
0day.todayadded 2010/11/07 12:0 a.m.26 views

Zeeways Adserver Multiple Vulnerabilities

Exploit for php platform in category web applications ========================================= Zeeways Adserver Multiple Vulnerabilities ========================================= Date: 06.11.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code :...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2010/11/06 12:0 a.m.14 views

Zeeways Adserver - Multiple Vulnerabilities

Zeeways Adserver - Multiple Vulnerabilities Exploit Title: Zeeways Adserver Multiple Vulnerabilities Date: 06.11.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...

0.3AI score
Exploits0
Exploit DB
Exploit DBadded 2010/11/06 12:0 a.m.27 views

Zeeways Adserver - Multiple Vulnerabilities

Exploit Title: Zeeways Adserver Multiple Vulnerabilities Date: 06.11.2010 Author: Valentin Category: webapps/0day Version: Tested on: CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title = Zeeways Adserver Multip...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2010/08/20 12:0 a.m.21 views

vBulletin 4.0.4 Code Execution

/======================================================================\ || || || Vurnerebility vBulletin - http://www.vbulletin.org || || Local or adserver Javascript,forumdisplay.php" Code Execution || || Version license 4.0.4 || || info set cookies, error issue & critical-information-disclosur...

0.3AI score
Exploits0
0day.today
0day.todayadded 2010/08/19 12:0 a.m.18 views

vBulletin v4.0.4 adserver Javascript (forumdisplay.php) Code Execution

Exploit for php platform in category web applications ====================================================================== vBulletin v4.0.4 adserver Javascript forumdisplay.php Code Execution ======================================================================...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2010/07/08 12:0 a.m.32 views

Inout Ad server Ultimate - Arbitrary File Upload

Inout Ad server Ultimate - Arbitrary File Upload ============================================================== Inout Ad server Ultimate -- Shell upload Vulnerabilty ============================================================== Name : Inout Ad server Ultimate Shell upload Vulnerabilty Date : jul...

0.4AI score
Exploits0
0day.today
0day.todayadded 2010/07/06 12:0 a.m.33 views

Inout Ad server Ultimate Shell upload Vulnerabilty

Exploit for php platform in category web applications ================================================== Inout Ad server Ultimate Shell upload Vulnerabilty ================================================== Name : Inout Ad server Ultimate Shell upload Vulnerabilty Critical Level :VERY HIGH vendor...

7.1AI score
Exploits0
NVD
NVDadded 2009/11/29 1:8 p.m.22 views

CVE-2009-4098

Unrestricted file upload vulnerability in banner-edit.php in OpenX adserver 2.8.1 and earlier allows remote authenticated users with banner / file upload permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a...

6CVSS7.3AI score0.18676EPSS
Exploits3References7
Prion
Prionadded 2009/11/29 1:8 p.m.19 views

Unrestricted file upload

Unrestricted file upload vulnerability in banner-edit.php in OpenX adserver 2.8.1 and earlier allows remote authenticated users with banner / file upload permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a...

6CVSS7.8AI score0.18676EPSS
Exploits3References7Affected Software1
Cvelist
Cvelistadded 2009/11/28 11:0 a.m.25 views

CVE-2009-4098

Unrestricted file upload vulnerability in banner-edit.php in OpenX adserver 2.8.1 and earlier allows remote authenticated users with banner / file upload permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a...

7.3AI score0.18676EPSS
Exploits3References7
Rows per page
Query Builder