OpenX suffers from SQL injection, cross site scripting, CRLF injection, and file deletion vulnerabilities. Versions equal to or below 2.4.10, 2.6.4, and 2.7.29-beta are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76285/OPENX-SA-2009-002.txt
Source: https://packetstormsecurity.com/files/76285/OpenX-SQL-INjection-XSS.html