Vulnerabilities > Orbitscripts > Orbit Open AD Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-04-11 | CVE-2014-2540 | SQL Injection vulnerability in Orbitscripts Orbit Open AD Server 1.1.0 SQL injection vulnerability in OrbitScripts Orbit Open Ad Server before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the site_directory_sort_field parameter to guest/site_directory. | 7.5 |