CVE-2021-22874

CVE-2021-22874

EPSS 22.1%CWE-79

Revive Adserver before 5.1.1 is vulnerable to a reflected XSS vulnerability in userlog-index.php via the `period_preset` parameter.

Affected products

n/a · https://github.com/revive-adserver/revive-adserver

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/revive-adserver/revive-adserver/commit/e2a67ce8 https://hackerone.com/reports/1083231 https://www.revive-adserver.com/security/revive-sa-2021-002/