Filtered by vendor Revive
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-4680 | 1 Revive | 1 Revive Old Posts | 2024-11-21 | N/A | 7.2 HIGH |
The Revive Old Posts WordPress plugin before 9.0.11 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present. | |||||
CVE-2023-26756 | 1 Revive | 1 Adserver | 2024-08-02 | N/A | 7.5 HIGH |
The login page of Revive Adserver v5.4.1 is vulnerable to brute force attacks. NOTE: The vendor's position is that this is effectively mitigated by rate limits and password-quality features. |