Description
Revive Adserver before 3.2.2 does not send the appropriate Cache-Control HTTP headers in responses for admin UI pages, which allows local users to obtain sensitive information via the web browser cache.
Remediation
References
Related Vulnerabilities
MongoDb CVE-2024-7553 Vulnerability (CVE-2024-7553)
WordPress Plugin WordPress Video Player Multiple SQL Injection Vulnerabilities (1.5.16)
Claroline Other Vulnerability (CVE-2006-2868)
Apache HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2022-22721)
phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6048)