Vulnerabilities > Openx
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-11-29 | CVE-2009-4098 | Improper Input Validation vulnerability in Openx Unrestricted file upload vulnerability in banner-edit.php in OpenX adserver 2.8.1 and earlier allows remote authenticated users with banner / file upload permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an images directory. | 6.0 |
| 2009-02-20 | CVE-2008-6163 | SQL Injection vulnerability in Openx 2.6.1 SQL injection vulnerability in www/delivery/ac.php in OpenX 2.6.1 allows remote attackers to execute arbitrary SQL commands via the bannerid parameter. | 7.5 |
| 2009-01-27 | CVE-2009-0291 | Path Traversal vulnerability in Openx 2.6.3 Directory traversal vulnerability in fc.php in OpenX 2.6.3 allows remote attackers to include and execute arbitrary files via a .. | 7.5 |