Vulnerabilities > Mobfox
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-04-22 | CVE-2014-2654 | SQL Injection vulnerability in Mobfox Madserve 2.0 Multiple SQL injection vulnerabilities in MobFox mAdserve 2.0 and earlier allow remote authenticated users to execute arbitrary SQL commands via the id parameter to (1) edit_ad_unit.php, (2) view_adunits.php, or (3) edit_campaign.php in www/cp/. | 6.5 |