Total
46 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2016-9454 | 1 Revive-adserver | 1 Revive Adserver | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
Revive Adserver before 3.2.3 suffers from Persistent XSS. A vector for persistent XSS attacks via the Revive Adserver user interface exists, requiring a trusted (non-admin) account. The banner image URL for external banners wasn't properly escaped when displayed in most of the banner related pages. | |||||
CVE-2016-9470 | 1 Revive-adserver | 1 Revive Adserver | 2024-02-04 | 9.3 HIGH | 9.0 CRITICAL |
Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected File Download. `www/delivery/asyncspc.php` was vulnerable to the fairly new Reflected File Download (RFD) web attack vector that enables attackers to gain complete control over a victim's machine by virtually downloading a file from a trusted domain. | |||||
CVE-2016-9128 | 1 Revive-adserver | 1 Revive Adserver | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
Revive Adserver before 3.2.3 suffers from reflected XSS. The affiliate-preview.php script in www/admin is vulnerable to a reflected XSS attack. This vulnerability could be used by an attacker to steal the session ID of an authenticated user, by tricking them into visiting a specifically crafted URL. | |||||
CVE-2016-9130 | 1 Revive-adserver | 1 Revive Adserver | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
Revive Adserver before 3.2.3 suffers from Persistent XSS. A vector for persistent XSS attacks via the Revive Adserver user interface exists, requiring a trusted (non-admin) account. The website name wasn't properly escaped when displayed in the campaign-zone.php script. | |||||
CVE-2016-9125 | 1 Revive-adserver | 1 Revive Adserver | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Revive Adserver before 3.2.3 suffers from session fixation, by allowing arbitrary session identifiers to be forced and, at the same time, by not invalidating the existing session upon a successful authentication. Under some circumstances, that could have been an opportunity for an attacker to steal an authenticated session. | |||||
CVE-2016-9124 | 1 Revive-adserver | 1 Revive Adserver | 2024-02-04 | 5.0 MEDIUM | 9.8 CRITICAL |
Revive Adserver before 3.2.3 suffers from Improper Restriction of Excessive Authentication Attempts. The login page of Revive Adserver is vulnerable to password-guessing attacks. An account lockdown feature was considered, but rejected to avoid introducing service disruptions to regular users during such attacks. A random delay has instead been introduced as a countermeasure in case of password failures, along with a system to discourage parallel brute forcing. These systems will effectively allow the valid users to log in to the adserver, even while an attack is in progress. |