CVE-2026-21664

>= 6.0.0 and <= 6.0.4

HackerOne community member Huynh Pham Thanh Luc (nigh7c0r3) has reported a reflected XSS vulnerability in the afr.php delivery scr

6.1MEDIUM

CVE-2026-21663

>= 6.0.0 and <= 6.0.4

HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the banner-acl.php script of Revive Ad

6.1MEDIUM

CVE-2026-21642

<= 6.0.4

HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the banner-acl.php and `channel-acl.

6.1MEDIUM

CVE-2026-21641

<= 6.0.4

HackerOne community member Jad Ghamloush (0xjad) has reported an authorization bypass vulnerability in the tracker-delete.php sc

6.5MEDIUM

CVE-2026-21640

>= 6.0.0 and <= 6.0.4

HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the Revive Adserver settings. When

2.7LOW

CVE-2023-53931

all versions

Revive Adserver 5.4.1 contains a cross-site scripting vulnerability in the banner advanced configuration page that allows attacker

6.1MEDIUM

CVE-2025-55129

>= 6.0.0 and < 6.0.4

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adserver was still vulnerable to im

5.4MEDIUM

CVE-2025-55124

>= 6.0.0 and <= 6.0.1

Improper neutralisation of input in Revive Adserver 6.0.0+ causes a reflected XSS attack in the banner-zone.php script.

6.1MEDIUM

CVE-2025-55123

all versions

Improper neutralization of input in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes manager accounts to be able to cra

5.4MEDIUM

CVE-2025-52671

all versions

Debug information disclosure in the SQL error message to in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes non-admin

4.3MEDIUM

CVE-2025-52670

<= 5.5.2

Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes users on the system to delete banners o

6.5MEDIUM

CVE-2025-52669

<= 5.5.2

Insecure design policies in the user management system of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes non-admin us

4.3MEDIUM

CVE-2025-52668

<= 5.5.2

Improper input neutralization in the stats-conversions.php script in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes p

5.4MEDIUM

CVE-2025-52667

<= 5.5.2

Missing JSON Content-Type header in a script in Revive Adserver 6.0.1 and 5.5.2 and earlier versions causes a stored XSS attack to

5.4MEDIUM

CVE-2025-52666

<= 5.5.2

Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an adm

2.7LOW

CVE-2025-48987

<= 5.5.2

Improper Neutralization of Input in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes a potential reflected XSS attack.

6.1MEDIUM

CVE-2025-48986

<= 5.5.2

Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users' e

8.8HIGH

CVE-2025-55128

>= 6.0.0 and < 6.0.3

HackerOne community member Dang Hung Vi (vidang04) has reported an uncontrolled resource consumption vulnerability in the “userl

6.5MEDIUM

CVE-2025-55127

>= 6.0.0 and < 6.0.3

HackerOne community member Dao Hoang Anh (yoyomiski) has reported an improper neutralization of whitespace in the username when ad

5.4MEDIUM

CVE-2025-55126

>= 6.0.0 and < 6.0.3

HackerOne community member Dang Hung Vi (vidang04) has reported a stored XSS vulnerability involving the navigation box at the top

6.5MEDIUM

CVE-2025-52664

all versions

SQL injection in Revive Adserver 6.0.0 causes potential disruption or information access when specifically crafted payloads are se

8.8HIGH

CVE-2025-27208

< 6.0.0

A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Revive Adserver version 5.5.2. An attacker could trick

6.1MEDIUM

CVE-2023-38040

<= 5.4.1

A reflected XSS vulnerability exists in Revive Adserver 5.4.1 and earlier versions..

6.1MEDIUM

CVE-2023-26756

all versions

The login page of Revive Adserver v5.4.1 is vulnerable to brute force attacks. NOTE: The vendor's position is that this is effecti

7.5HIGH

CVE-2021-22948

< 5.3.0

Vulnerability in the generation of session IDs in revive-adserver < 5.3.0, based on the cryptographically insecure uniqid() PHP fu

7.1HIGH

CVE-2021-22889

< 5.2.0

Revive Adserver before v5.2.0 is vulnerable to a reflected XSS vulnerability in the statsBreakdown parameter of stats.php (and p

6.1MEDIUM

CVE-2021-22888

< 5.2.0

Revive Adserver before v5.2.0 is vulnerable to a reflected XSS vulnerability in the status parameter of campaign-zone-zones.php.

6.1MEDIUM

CVE-2021-22875

< 5.1.1

Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in stats.php via the setPerPage parameter.

6.1MEDIUM

CVE-2021-22874

< 5.1.1

Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in userlog-index.php via the period_preset parameter

6.1MEDIUM

CVE-2021-22873

< 5.1.0

Revive Adserver before 5.1.0 is vulnerable to open redirects via the dest, oadest, and/or ct0 parameters of the lg.php and c

6.1MEDIUM

CVE-2021-22872

< 5.1.0

Revive Adserver before 5.1.0 is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the publicly accessible afr

6.1MEDIUM

CVE-2021-22871

< 5.1.0

Revive Adserver before 5.1.0 permits any user with a manager account to store possibly malicious content in the URL website proper

4.8MEDIUM

CVE-2020-8143

< 5.0.5

An Open Redirect vulnerability was discovered in Revive Adserver version < 5.0.5 and reported by HackerOne user hoangn144. A remot

6.1MEDIUM

CVE-2020-8142

< 5.0.5

A security restriction bypass vulnerability has been discovered in Revive Adserver version < 5.0.5 by HackerOne user hoangn144. Re

6.8MEDIUM

CVE-2020-8115

<= 5.0.3

A reflected XSS vulnerability has been discovered in the publicly accessible afr.php delivery script of Revive Adserver <= 5.0.3 b

6.1MEDIUM

CVE-2019-5440

< 4.2.1

Use of cryptographically weak PRNG in the password recovery token generation of Revive Adserver < v4.2.1 causes a potential authen

8.1HIGH

CVE-2019-5434

< 4.2.0

An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize() call on the "

9.8CRITICAL

CVE-2019-5433

< 4.2.0

A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a specifically crafted admin accoun

5.4MEDIUM

CVE-2016-9472

<= 3.2.4

Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected XSS. The Revive Adserver web installer scripts were vulnerable to a

5.4MEDIUM

CVE-2016-9471

<= 3.2.4

Revive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. Usernames weren't properly sanitised when creating

3.1LOW

CVE-2016-9470

<= 3.2.4

Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected File Download. www/delivery/asyncspc.php was vulnerable to the fai

9.0CRITICAL

CVE-2016-9457

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Reflected XSS. www/admin/stats.php is vulnerable to reflected XSS attacks via multiple

5.4MEDIUM

CVE-2016-9456

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver team conducted a security audit o

8.8HIGH

CVE-2016-9455

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). A number of scripts in Revive Adserver's user interfa

8.8HIGH

CVE-2016-9454

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Persistent XSS. A vector for persistent XSS attacks via the Revive Adserver user interfa

5.4MEDIUM

CVE-2016-9130

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Persistent XSS. A vector for persistent XSS attacks via the Revive Adserver user interfa

5.4MEDIUM

CVE-2016-9129

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Information Exposure Through Discrepancy. It is possible to check whether or not an emai

5.3MEDIUM

CVE-2016-9128

<= 3.2.2

Revive Adserver before 3.2.3 suffers from reflected XSS. The affiliate-preview.php script in www/admin is vulnerable to a reflecte

5.4MEDIUM

CVE-2016-9127

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The password recovery form in Revive Adserver is vuln

8.8HIGH

CVE-2016-9126

<= 3.2.2

Revive Adserver before 3.2.3 suffers from persistent XSS. Usernames are not properly escaped when displayed in the audit trail wid

5.4MEDIUM

CVE-2016-9125

<= 3.2.2

Revive Adserver before 3.2.3 suffers from session fixation, by allowing arbitrary session identifiers to be forced and, at the sam

9.8CRITICAL

CVE-2016-9124

<= 3.2.2

Revive Adserver before 3.2.3 suffers from Improper Restriction of Excessive Authentication Attempts. The login page of Revive Adse

9.8CRITICAL

CVE-2017-5833

<= 4.0.0

Cross-site scripting (XSS) vulnerability in the invocation code generation for interstitial zones in Revive Adserver before 4.0.1

6.1MEDIUM

CVE-2017-5832

<= 4.0.0

Cross-site scripting (XSS) vulnerability in Revive Adserver before 4.0.1 allows remote authenticated users to inject arbitrary web

5.4MEDIUM

CVE-2017-5831

<= 4.0.0

Session fixation vulnerability in the forgot password mechanism in Revive Adserver before 4.0.1, when setting a new password, allo

5.9MEDIUM

CVE-2017-5830

<= 4.0.0

Revive Adserver before 4.0.1 allows remote attackers to execute arbitrary code via serialized data in the cookies related to the d

9.8CRITICAL

CVE-2015-7373

<= 3.2.1

Cross-site scripting (XSS) vulnerability in the "magic-macros" feature in Revive Adserver before 3.2.2 allows remote attackers to

CVE-2015-7372

<= 3.2.1

Directory traversal vulnerability in delivery-dev/al.php in Revive Adserver before 3.2.2 allows remote attackers to include and ex

CVE-2015-7371

<= 3.2.1

Revive Adserver before 3.2.2 does not restrict access to run-mpe.php, which allows remote attackers to run the Maintenance Priorit

CVE-2015-7370

<= 3.2.1

Multiple cross-site scripting (XSS) vulnerabilities in open-flash-chart.swf in Open Flash Chart 2, as used in the VideoAds plugin

CVE-2015-7369

<= 3.2.1

The default Flash cross-domain policy (crossdomain.xml) in Revive Adserver before 3.2.2 does not restrict access cross domain acce

CVE-2015-7368

<= 3.2.1

Revive Adserver before 3.2.2 does not send the appropriate Cache-Control HTTP headers in responses for admin UI pages, which allow

CVE-2015-7367

<= 3.2.1

Revive Adserver before 3.2.2 allows remote attackers to perform unspecified actions by leveraging an unexpired session after the u

CVE-2015-7366

<= 3.2.1

Multiple cross-site request forgery (CSRF) vulnerabilities in Revive Adserver before 3.2.2 allow remote attackers to hijack the au

CVE-2015-7365

<= 3.2.1

Cross-site scripting (XSS) vulnerability in the plugin upgrade form in Revive Adserver before 3.2.2 allows remote attackers to inj

CVE-2015-7364

<= 3.2.1

The HTML_Quickform library, as used in Revive Adserver before 3.2.2, allows remote attackers to bypass the CSRF protection mechani

CVE-2014-9407

<= 3.0.4

Multiple cross-site request forgery (CSRF) vulnerabilities in Revive Adserver before 3.0.5 allow remote attackers to hijack the au

CVE-2014-8875

<= 3.0.5

The XML_RPC_cd function in lib/pear/XML/RPC.php in Revive Adserver before 3.0.6 allows remote attackers to cause a denial of servi

CVE-2014-8793

<= 3.0.5

Cross-site scripting (XSS) vulnerability in lib/max/Admin/UI/Field/PublisherIdField.php in Revive Adserver before 3.0.6 allows rem

CVE-2013-5954

<= 3.0.4

Multiple cross-site request forgery (CSRF) vulnerabilities in OpenX 2.8.11 and earlier allow remote attackers to hijack the authen

CVE-2013-7149

<= 3.0.1

SQL injection vulnerability in www/delivery/axmlrpc.php (aka the XML-RPC delivery invocation script) in Revive Adserver before 3.0