CNNVD-202511-2301 Information
Nov 20, 2025
cve
CNNVD ID
CNNVD-202511-2301
Related CVE
- CNNVD Published: 2025-11-20
Description (Chinese)
Revive Adserver是Revive Adserver团队的一套开源的广告管理系统。该系统提供广告投放、广告位管理、数据统计等功能。 Revive Adserver 5.5.2版本和6.0.1版本及之前版本存在安全漏洞,该漏洞源于stats-conversions.php脚本输入中和不当,可能导致信息泄露和会话劫持。
Description (English)
Revive Adserver is an open-source advertising management system for the Revive Adserver team. The system provides advertising, position management, data statistics, etc. There is a security loophole in Revive Adserver, Versions 5.5.2 and 6.0.1 and earlier versions, which stems from inappropriate input of stats-conversions.php scripts, which may lead to information leaks and hijackings.
Hazard Level
Medium
Vulnerability Type
其他
Published
2025-11-20
Last Modified
2026-02-24
References
https://hackerone.com/reports/3400506
Patch
https://www.revive-adserver.com/download/
Share on: