Revive Adserver versions 5.1.0 and below suffer from multiple reflective cross site scripting vulnerabilities.
23a1ca5191f5cc6df357836714316378Revive Adserver versions 5.0.5 and below suffer from persistent and reflective cross site scripting and open redirection vulnerabilities.
c40f29cb924b57b94545fe12aa8a510eRevive Adserver versions 5.0.4 and below suffer from bypass and open redirection vulnerabilities.
152d983086073c4e3fbe1f716e8fcc71Revive Adserver versions 5.0.3 and below suffer from a cross site scripting vulnerability.
876b5c6e7b14f9d76a23e57cfee6a8f9Revive Adserver version 4.2 suffers from a code execution vulnerability.
798dbf2fc1184deffa0d4ee3b26e6156Revive Adserver versions prior to 4.2.1 make use of a cryptographically weak pseudo-random number generator.
243ddb693ca68519a086c8cd8298b3ffRevive Adserver versions prior to 4.2.0 suffers from deserialization and open redirection vulnerabilities.
abad14aca99f2cdd967301136687b1d9Adserver Script version 5.6 suffers from a remote SQL injection vulnerability.
3dc2ba7fea8e9d470e4371ea5a764901Revive Ad Server version 4.0.1 suffers from cross site request forgery and cross site scripting vulnerabilities.
6c840719116c4524856ae14367977595Revive Adserver versions 4.0.0 and below suffer from cross site scripting, session fixation, and deserialization of untrusted data vulnerabilities.
7851849891b07f255ee87bf675b8f570Revive Adserver versions 3.2.4 and below suffers from reflected file download, cross site scripting, and special element injection.
440b8783a596b296a356c2c335307e10Revive Adserver versions 3.2.2 and below suffer from cross site request forgery, lack of brute force controls, session fixation, information exposure, and multiple cross site scripting vulnerabilities.
9da88618bfb5a6be4a1f847e7236b34dRevive Adserver version 3.2.2 suffers from an open redirection vulnerability.
d4c7aa79c709e73b3415c48d14fa8089Revive Adserver versions 3.2.1 and below suffer from improper access controls, cross site request forgery, cross site scripting, local file inclusion, and various other vulnerabilities.
2a60163ddac5f6416bc4056329560ba9Revive Adserver version 3.0.5 suffers from a cross site scripting vulnerability.
45b37e92137668801ca0527d0b95157bRevive Adserver versions 3.0.5 and below suffer from cross site scripting and denial of service vulnerabilities.
a1728172039a83c24b917c0825f0236eRevive Adserver version 3.0.4 and below suffer from multiple cross site request forgery vulnerabilities.
e8f16878eaa76717816a13b5a26163a4MobFox mAdserver version 2.0 suffers from a remote SQL injection vulnerability.
c17623ce75a3b2f5f0217bcd114af2a1Revive Adserver versions 3.0.1 and below suffer from a remote SQL injection vulnerability. The XML-RPC delivery invocation script was failing to escape its input parameters in the same way the other delivery methods do, allowing attackers to inject arbitrary SQL code via the "what" parameter of the delivery XML-RPC methods. Also, the escaping technique used to handle such parameter in the delivery scripts was based on the addslashes PHP function and has now been upgraded to use the dedicated escaping functions for the database in use.
d48e78efcb0beaabb18b60baa130c7b2The Progea Movicon 11 TCPUploadServer allows remote users to execute functions on the server without any form of authentication. Impacts include deletion of arbitrary files, execution of a program with an arbitrary argument, crashing the server, information disclosure, and more. This design flaw puts the host running this server at risk of potentially unauthorized functions being executed on the system.
dbbf94c4467d62e7aa1ccc702f83fc50The Zeeways Adserver suffers from cross site request forgery, disclosure and remote SQL injection vulnerabilities.
2f3b326abc4277ffbcadef8338038403Secunia Security Advisory - boom3rang has reported a vulnerability in Inout Adserver, which can be exploited by malicious users to conduct SQL injection attacks.
e5141b629c33bd574061490deb771a91Inout Adserver suffers from a remote SQL injection vulnerability.
70bc9e850a076d5b5a4737ee1cbf3f60
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed