D00M3R4Ng

**Name of the Vulnerable Software and Affected Versions** OpenX version 2.6.1 **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The issue is related to the `bannerid` parameter in the "/www/delivery/ac.php" API endpoint. **Recommendations** For OpenX version 2.6.1, avoid using the `bannerid` parameter in the "/www/delivery/ac.php" API endpoint until the issue is resolved. As a temporary workaround, consider restricting access to this endpoint to minimize the risk of exploitation.