CVE-2016-9472

EUVD-2016-10278
Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected XSS. The Revive Adserver web installer scripts were vulnerable to a reflected XSS attack via the dbHost, dbUser, and possibly other parameters. It has to be noted that the window for such attack vectors to be possible is extremely narrow and it is very unlikely that such an attack could be actually effective.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
Affected Products (NVD)
VendorProductVersion
revive-adserverrevive_adserver
𝑥
≤ 3.2.4
revive-adserverrevive_adserver
4.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/revive-adserver/revive-adserver/commit/14ff73f0
https://github.com/revive-adserver/revive-adserver/commit/fcf72c8a
https://hackerone.com/reports/170156
https://www.revive-adserver.com/security/revive-sa-2016-002/
https://github.com/revive-adserver/revive-adserver/commit/14ff73f0
https://github.com/revive-adserver/revive-adserver/commit/fcf72c8a
https://hackerone.com/reports/170156
https://www.revive-adserver.com/security/revive-sa-2016-002/