cbcvebase.
CVE-2025-55128
published 2025-11-20

CVE-2025-55128: HackerOne community member Dang Hung Vi (vidang04) has reported an uncontrolled resource consumption vulnerability in the “userlog-index.php”. An attacker with…

PriorityP336medium6.5CVSS 3.0
AVNACLPRLUINSUCNINAH
EPSS
0.35%
26.4th percentile
HackerOne community member Dang Hung Vi (vidang04) has reported an uncontrolled resource consumption vulnerability in the “userlog-index.php”. An attacker with access to the admin interface could request an arbitrarily large number of items per page, potentially leading to a denial of service.

Affected

2 ranges
VendorProductVersion rangeFixed in
aquaplatformrevive_adserver>= 6.0.0 < 6.0.36.0.3
reviverevive_adserver6 – 6.0.2
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.