Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
ReviveAdserver Improper Access Control Vulnerability - CVE-2025-48986 - Vulnerability Database
ReviveAdserver

ReviveAdserver Improper Access Control Vulnerability - CVE-2025-48986

High
Reference: CVE-2025-48986
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-48986
Title: ReviveAdserver Improper Access Control Vulnerability
Overview:

Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in attacker to change other users39 email address and potentialy take over their accounts using the forgot password functionality.