3 matches found
Sql injection
SQL injection vulnerability in www/delivery/ac.php in OpenX 2.6.1 allows remote attackers to execute arbitrary SQL commands via the bannerid parameter...
CVE-2008-6163
SQL injection vulnerability in www/delivery/ac.php in OpenX 2.6.1 allows remote attackers to execute arbitrary SQL commands via the bannerid parameter...
CVE-2008-6163
OpenX (v2.6.1) OpenX ac.php bannerid Parameter SQL Injection: the bannerid input is used directly in SQL queries without validation, enabling remote attackers to manipulate queries and potentially access sensitive data or execute arbitrary PHP code. Affected component: www/delivery/ac.php. Root c...