CNNVD-202510-4352 Information
CNNVD ID
CNNVD-202510-4352
Related CVE
- CNNVD Published: 2025-10-31
Description (Chinese)
Revive Adserver是Revive Adserver团队的一套开源的广告管理系统。该系统提供广告投放、广告位管理、数据统计等功能。 Revive Adserver 5.5.2版本存在安全漏洞,该漏洞源于admin-search.php文件中compact参数存在反射型跨站脚本,可能导致执行任意JavaScript代码。
Description (English)
Revive Adserver is an open-source advertising management system for the Revive Adserver team. The system provides advertising, position management, data statistics, etc. There is a security loophole in Revive Adserver version 5.5.2, which stems from the fact that there is a reflective cross-site script of the Compact parameters in the admin-search.php file, which may result in the implementation of any JavaScript code.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Revive Adserver
Published
2025-10-31
Last Modified
2026-02-24
References
https://hackerone.com/reports/3091390 https://access.redhat.com/security/cve/cve-2025-27208
Patch
https://www.revive-adserver.com/download/
Share on: