Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Revive Adserver version 5.5.2. An attacker could trick a user with access to the user interface of a Revive Adserver instance into clicking on a specifically crafted URL and execute injected JavaScript code in the context of the victim's browser. The session cookie cannot be accessed, but a number of other operations could be performed. The vulnerability is present in the admin-search.php file and can be exploited via the compact parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Revive Adserver 安全漏洞
Vulnerability Description
Revive Adserver是Revive Adserver团队的一套开源的广告管理系统。该系统提供广告投放、广告位管理、数据统计等功能。 Revive Adserver 5.5.2版本存在安全漏洞,该漏洞源于admin-search.php文件中compact参数存在反射型跨站脚本,可能导致执行任意JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A