OpenX xajaxargs SQL injection vulnerability

Description
  • A vulnerability has been discovered in OpenX, which can be exploited by malicious people to conduct SQL injection attacks.<br/><br/> Input passed via the "xajaxargs" parameter to www/admin/updates-history.php (when "xajax" is set to "expandOSURow") is not properly sanitised in e.g. the "queryAuditBackupTablesByUpgradeId()" function (lib/OA/Upgrade/DB_UpgradeAuditor.php) before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. <br/><br/> The vulnerability is confirmed in version 2.8.9. Prior versions may also be affected.
Remediation
  • Update to version 2.8.10.