ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2016-9455 - Vulnerability Database

ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2016-9455

High

Reference: CVE-2016-9455

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-9455

Title: ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). A number of scripts in Revive Adserver39s user interface are vulnerable to CSRF attacks: www/admin/banner-acl.php www/admin/banner-activate.php www/admin/banner-advanced.php www/admin/banner-modify.php www/admin/banner-swf.php www/admin/banner-zone.php www/admin/tracker-modify.php.