Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
ReviveAdserver Use of Externally-Controlled Format String Vulnerability - CVE-2025-52666 - Vulnerability Database
ReviveAdserver

ReviveAdserver Use of Externally-Controlled Format String Vulnerability - CVE-2025-52666

Low
Reference: CVE-2025-52666
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-52666
Title: ReviveAdserver Use of Externally-Controlled Format String Vulnerability
Overview:

Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an administrator user to disable the admin user console due to a fatal PHP error.