SQL injection vulnerability in www/delivery/axmlrpc.php (aka the XML-RPC delivery invocation script) in Revive Adserver before 3.0.2, and OpenX Source 2.8.11 and earlier, allows remote attackers to execute arbitrary SQL commands via the what parameter to an XML-RPC method.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2013-12-28T02:00:00
Updated: 2013-12-28T02:57:01
Reserved: 2013-12-19T00:00:00
Link: CVE-2013-7149
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-12-28T04:53:06.773
Modified: 2018-10-30T16:26:26.780
Link: CVE-2013-7149
JSON object: View
Redhat Information
No data.
CWE