Vulnerabilities > Revive Adserver > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-26 | CVE-2021-22871 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 5.1.0 permits any user with a manager account to store possibly malicious content in the URL website property, which is then displayed unsanitized in the affiliate-preview.php tag generation screen, leading to a persistent cross-site scripting (XSS) vulnerability. | 3.5 |
| 2017-03-28 | CVE-2016-9126 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from persistent XSS. | 3.5 |
| 2017-03-28 | CVE-2016-9128 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from reflected XSS. | 3.5 |
| 2017-03-28 | CVE-2016-9130 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from Persistent XSS. | 3.5 |
| 2017-03-28 | CVE-2016-9454 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from Persistent XSS. | 3.5 |
| 2017-03-28 | CVE-2016-9457 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from Reflected XSS. | 3.5 |
| 2017-03-28 | CVE-2016-9471 | Unspecified vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. | 2.1 |
| 2017-03-28 | CVE-2016-9472 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected XSS. | 3.5 |
| 2017-03-03 | CVE-2017-5832 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Cross-site scripting (XSS) vulnerability in Revive Adserver before 4.0.1 allows remote authenticated users to inject arbitrary web script or HTML via the user's email address. | 3.5 |
| 2015-10-14 | CVE-2015-7368 | Information Exposure vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.2 does not send the appropriate Cache-Control HTTP headers in responses for admin UI pages, which allows local users to obtain sensitive information via the web browser cache. | 2.1 |