Revive-Adserver Revive Adserver vulnerabilities
66 known vulnerabilities affecting revive-adserver/revive_adserver.
Total CVEs
66
CISA KEV
0
Public exploits
4
Exploited in wild
3
Severity breakdown
CRITICAL4HIGH12MEDIUM47LOW3
Vulnerabilities
Page 2 of 4
CVE-2025-52670P3MEDIUMCVSS 6.5≤ 5.5.2≥ 6.0.0, ≤ 6.0.12025-11-20
CVE-2025-52670 [MEDIUM] CWE-639 CVE-2025-52670: Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes users on
Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes users on the system to delete banners owned by other accounts
nvd
CVE-2021-22948P3HIGHCVSS 7.1fixed in 5.3.0v5.3.02021-09-23
CVE-2021-22948 [HIGH] CWE-79 CVE-2021-22948: Vulnerability in the generation of session IDs in revive-adserver < 5.3.0, based on the cryptographi
Vulnerability in the generation of session IDs in revive-adserver < 5.3.0, based on the cryptographically insecure uniqid() PHP function. Under some circumstances, an attacker could theoretically be able to brute force session IDs in order to take over a specific account.
nvd
CVE-2021-22874P4MEDIUMCVSS 6.1fixed in 5.1.12021-01-28
CVE-2021-22874 [MEDIUM] CWE-79 CVE-2021-22874: Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in userlog-index.php via
Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in userlog-index.php via the `period_preset` parameter.
nvd
CVE-2016-9455P3HIGHCVSS 8.8≤ 3.2.22017-03-28
CVE-2016-9455 [HIGH] CWE-352 CVE-2016-9455: Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). A number of scripts in
Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). A number of scripts in Revive Adserver's user interface are vulnerable to CSRF attacks: `www/admin/banner-acl.php`, `www/admin/banner-activate.php`, `www/admin/banner-advanced.php`, `www/admin/banner-modify.php`, `www/admin/banner-swf.php`, `www/admin/banner-zone.php`, `www/admi
nvd
CVE-2016-9456P4HIGHCVSS 8.8≤ 3.2.22017-03-28
CVE-2016-9456 [HIGH] CWE-352 CVE-2016-9456: Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver tea
Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver team conducted a security audit of the admin interface scripts in order to identify and fix other potential CSRF vulnerabilities. Over 20+ such issues were fixed.
nvd
CVE-2015-7364P4MEDIUMCVSS 6.8≤ 3.2.12015-10-14
CVE-2015-7364 [MEDIUM] CWE-352 CVE-2015-7364: The HTML_Quickform library, as used in Revive Adserver before 3.2.2, allows remote attackers to bypa
The HTML_Quickform library, as used in Revive Adserver before 3.2.2, allows remote attackers to bypass the CSRF protection mechanism via an empty token.
nvd
CVE-2016-9127P4HIGHCVSS 8.8≤ 3.2.22017-03-28
CVE-2016-9127 [HIGH] CWE-352 CVE-2016-9127: Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The password recovery f
Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The password recovery form in Revive Adserver is vulnerable to CSRF attacks. This vulnerability could be exploited to send a large number of password recovery emails to the registered users, especially in conjunction with a bug that caused recovery emails to be sent to all the
nvd
CVE-2017-5831P4MEDIUMCVSS 5.9≤ 4.0.02017-03-03
CVE-2017-5831 [MEDIUM] CWE-384 CVE-2017-5831: Session fixation vulnerability in the forgot password mechanism in Revive Adserver before 4.0.1, whe
Session fixation vulnerability in the forgot password mechanism in Revive Adserver before 4.0.1, when setting a new password, allows remote attackers to hijack web sessions via the session ID.
nvd
CVE-2020-8142P4MEDIUMCVSS 6.8fixed in 5.0.52020-04-03
CVE-2020-8142 [MEDIUM] CWE-863 CVE-2020-8142: A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 b
A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. Revive Adserver, like many other applications, requires the logged in user to type the current password in order to change the e-mail address or the password. It was however possible for anyone with access to a Revive Adserve
nvd
CVE-2023-53931P4MEDIUMCVSS 6.1v5.4.12025-12-17
CVE-2023-53931 [MEDIUM] CWE-79 CVE-2023-53931: Revive Adserver 5.4.1 contains a cross-site scripting vulnerability in the banner advanced configura
Revive Adserver 5.4.1 contains a cross-site scripting vulnerability in the banner advanced configuration page that allows attackers to inject malicious scripts. Attackers can craft a malicious link to the banner-advanced.php endpoint with XSS payloads in prepend and append parameters to execute arbitrary JavaScript when an admin views the page.
nvd
CVE-2025-27208P4MEDIUMCVSS 6.1fixed in 6.0.0v6.0.02025-10-31
CVE-2025-27208 [MEDIUM] CWE-79 CVE-2025-27208: A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Revive Adserver version
A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Revive Adserver version 5.5.2. An attacker could trick a user with access to the user interface of a Revive Adserver instance into clicking on a specifically crafted URL and execute injected JavaScript code in the context of the victim's browser. The session cookie cannot be a
nvd
CVE-2025-52667P4MEDIUMCVSS 5.4≤ 5.5.2≥ 6.0.0, ≤ 6.0.12025-11-20
CVE-2025-52667 [MEDIUM] CWE-79 CVE-2025-52667: Missing JSON Content-Type header in a script in Revive Adserver 6.0.1 and 5.5.2 and earlier versions
Missing JSON Content-Type header in a script in Revive Adserver 6.0.1 and 5.5.2 and earlier versions causes a stored XSS attack to be possible for a logged in manager user.
nvd
CVE-2026-50745P4MEDIUMCVSS 6.1fixed in 6.0.82026-06-26
CVE-2026-50745 [MEDIUM] CWE-79 CVE-2026-50745: A missing sanitisation vulnerability exists with user input in the stats-video.php script. The way U
A missing sanitisation vulnerability exists with user input in the stats-video.php script. The way URLs to this script were constructed did not follow best practices, and the output of the Smarty custom helper function url was neither properly encoded nor sanitised, allowing user‑supplied input to be reflected without escaping.
nvd
CVE-2021-22872P4MEDIUMCVSS 6.1fixed in 5.1.02021-01-26
CVE-2021-22872 [MEDIUM] CVE-2021-22872: Revive Adserver before 5.1.0 is vulnerable to a reflected cross-site scripting (XSS) vulnerability v
Revive Adserver before 5.1.0 is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the publicly accessible afr.php delivery script. While this issue was previously addressed in modern browsers as CVE-2020-8115, some older browsers (e.g., IE10) that do not automatically URL encode parameters were still vulnerable.
nvd
CVE-2026-50742P4MEDIUMCVSS 5.4fixed in 6.0.82026-06-26
CVE-2026-50742 [MEDIUM] CWE-79 CVE-2026-50742: A stored XSS vulnerabilities exists in the `maintenance-acl-check.php` and `maintenance-banners-chec
A stored XSS vulnerabilities exists in the `maintenance-acl-check.php` and `maintenance-banners-check.php` tools of Revive Adserver 6.0.7. The issue was caused by entity names being displayed without proper escaping when inconsistencies were detected. Whether the XSS payload is executed when an administrator uses the affected maintenance tools is not
nvd
CVE-2014-9407P4MEDIUMCVSS 6.8≤ 3.0.42014-12-19
CVE-2014-9407 [MEDIUM] CWE-352 CVE-2014-9407: Multiple cross-site request forgery (CSRF) vulnerabilities in Revive Adserver before 3.0.5 allow rem
Multiple cross-site request forgery (CSRF) vulnerabilities in Revive Adserver before 3.0.5 allow remote attackers to hijack the authentication of administrators for requests that (1) delete data via a request to agency-delete.php, (2) tracker-delete.php, or (3) userlog-delete.php in admin/ or (4) unlink accounts via a request to admin-user-unlink.php.
nvd
CVE-2019-5433P4MEDIUMCVSS 5.4fixed in 4.2.0vFixed version v4.2.02019-05-06
CVE-2019-5433 [MEDIUM] CWE-601 CVE-2019-5433: A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a spe
A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a specifically crafted admin account-switch.php URL that would eventually lead them to another (unsafe) domain, potentially used for stealing credentials or other phishing attacks. This vulnerability was addressed in version 4.2.0.
nvd
CVE-2016-9126P4MEDIUMCVSS 5.4≤ 3.2.22017-03-28
CVE-2016-9126 [MEDIUM] CWE-79 CVE-2016-9126: Revive Adserver before 3.2.3 suffers from persistent XSS. Usernames are not properly escaped when di
Revive Adserver before 3.2.3 suffers from persistent XSS. Usernames are not properly escaped when displayed in the audit trail widget of the dashboard upon login, allowing persistent XSS attacks. An authenticated user with enough privileges to create other users could exploit the vulnerability to access the administrator account.
nvd
CVE-2025-52668P4MEDIUMCVSS 5.4≤ 5.5.2≥ 6.0.0, ≤ 6.0.12025-11-20
CVE-2025-52668 [MEDIUM] CWE-79 CVE-2025-52668: Improper input neutralization in the stats-conversions.php script in Revive Adserver 5.5.2 and 6.0.1
Improper input neutralization in the stats-conversions.php script in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes potential information disclosure and session hijacking via a stored XSS attack.
nvd
CVE-2025-55123P4MEDIUMCVSS 5.4v6.0.02025-11-20
CVE-2025-55123 [MEDIUM] CWE-79 CVE-2025-55123: Improper neutralization of input in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes mana
Improper neutralization of input in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes manager accounts to be able to craft XSS attacks to their own advertiser users.
nvd