Revive Adserver vulnerabilities
23 known vulnerabilities affecting revive/revive_adserver.
Total CVEs
23
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM18LOW2
Vulnerabilities
Page 2 of 2
CVE-2025-52671P4MEDIUMCVSS 4.3≥ 6, ≤ 6.0.1≥ 5, ≤ 5.5.22025-11-20
CVE-2025-52671 [MEDIUM] CWE-209 CVE-2025-52671: Debug information disclosure in the SQL error message to in Revive Adserver 5.5.2 and 6.0.1 and earl
Debug information disclosure in the SQL error message to in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes non-admin users to acquire information about the software, PHP and database versions currently in use.
nvd
CVE-2026-21640P4LOWCVSS 2.7≥ 6, ≤ 6.0.42026-01-20
CVE-2026-21640 [LOW] CWE-134 CVE-2026-21640: HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the R
HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the Revive Adserver settings. When specific character combinations are used in a setting, the admin user console could be disabled due to a fatal PHP error.
nvd
CVE-2025-52666P4LOWCVSS 2.7≥ 6.0.1, ≤ 6.0.1≥ 5.5.2, ≤ 5.5.22025-11-20
CVE-2025-52666 [LOW] CWE-134 CVE-2025-52666: Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and
Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an administrator user to disable the admin user console due to a fatal PHP error.
nvd
← Previous2 / 2