WEB APPLICATION VULNERABILITIES Standard & Premium

ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-9456)

Description

Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver team conducted a security audit of the admin interface scripts in order to identify and fix other potential CSRF vulnerabilities. Over 20+ such issues were fixed.

Remediation

References

Related Vulnerabilities

Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-11201)

WebLogic CVE-2018-11039 Vulnerability (CVE-2018-11039)

MongoDb Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-20803)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2023-39456)

WordPress Plugin Image Gallery-Responsive Photo Gallery SQL Injection (1.8.9)

Severity

High

Classification

CVE-2016-9456 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities