Description
SQL injection vulnerability in www/delivery/axmlrpc.php (aka the XML-RPC delivery invocation script) in Revive Adserver before 3.0.2, and OpenX Source 2.8.11 and earlier, allows remote attackers to execute arbitrary SQL commands via the what parameter to an XML-RPC method.
Remediation
References
Related Vulnerabilities
Ruby on Rails Uncontrolled Resource Consumption Vulnerability (CVE-2026-33169)
WordPress Plugin Multicons [Multiple Favicons] Cross-Site Scripting (2.1)
Moodle Uncontrolled Recursion Vulnerability (CVE-2021-36395)
Java Unspesificed Vulnerability (CVE-2018-2964)
WebLogic Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-2351)