Description

Revive Adserver before 3.2.2 allows remote attackers to perform unspecified actions by leveraging an unexpired session after the user has been (1) deleted or (2) unlinked.

Remediation

References

CVE-2015-7367

Related Vulnerabilities

WordPress Plugin Roomcloud Multiple Cross-Site Scripting Vulnerabilities (1.1)

Oracle JRE CVE-2013-5803 Vulnerability (CVE-2013-5803)

WordPress Plugin Dynamic Widgets Multiple Unspecified Vulnerabilities (1.5.7)

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-1551)

WordPress Plugin GTM4WP Cross-Site Scripting (1.9)

Severity

High

Classification

CVE-2015-7367 CWE-284

Tags

Missing Update Known Vulnerabilities