Description

Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver team conducted a security audit of the admin interface scripts in order to identify and fix other potential CSRF vulnerabilities. Over 20+ such issues were fixed.

Remediation

References

CVE-2016-9456

Related Vulnerabilities

WordPress Plugin CM Pop-Up banners for WordPress SQL Injection (1.5.10)

WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Remote Code Execution (5.0.0)

WordPress Plugin WordPress Download Manager Unspecified Vulnerability (2.9.96)

Vanilla Forums CVE-2013-3528 Vulnerability (CVE-2013-3528)

Oracle Application Server Other Vulnerability (CVE-2006-5366)

Severity

High

Classification

CVE-2016-9456 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities