CVE-2025-52664

CVSS 8.8 HIGHEPSS 1.0%CWE-89

SQL injection in Revive Adserver 6.0.0 causes potential disruption or information access when specifically crafted payloads are sent by logged in users

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/CR:X/IR:X/AR:X

Productos afectados

Revive · Revive Adserver

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://seclists.org/fulldisclosure/2025/Oct/21 https://hackerone.com/reports/3395221