Max CVSS | 7.5 | Min CVSS | 5.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-5434 | 7.5 |
An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize() call on the "what" parameter in the "openads.spc" RPC method. Such vulnerability could be used to perform various types of attacks, e
|
09-10-2019 - 23:50 | 06-05-2019 - 17:29 | |
CVE-2019-5433 | 5.8 |
A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a specifically crafted admin account-switch.php URL that would eventually lead them to another (unsafe) domain, potentially used for stealing credentials o
|
09-10-2019 - 23:50 | 06-05-2019 - 17:29 |