CNNVD-202511-2297 Information
Nov 20, 2025
cve
CNNVD ID
CNNVD-202511-2297
Related CVE
- CNNVD Published: 2025-11-20
Description (Chinese)
Revive Adserver是Revive Adserver团队的一套开源的广告管理系统。该系统提供广告投放、广告位管理、数据统计等功能。 Revive Adserver 6.0.0及以上版本存在安全漏洞,该漏洞源于banner-zone.php脚本输入中和不当,可能导致反射型跨站脚本攻击。
Description (English)
Revive Adserver is an open-source advertising management system for the Revive Adserver team. The system provides advertising, position management, data statistics, etc. There is a security loophole in the Revive Adserver 6.0.0 and above, which originates from the misalignment of Banner-zone.php script input, which may lead to a reflective cross-station script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Revive Adserver
Published
2025-11-20
Last Modified
2026-02-24
References
https://hackerone.com/reports/3403727
Patch
https://www.revive-adserver.com/download/
Share on: