The HTML_Quickform library, as used in Revive Adserver prior to 3.2.2, allows remote malicious users to bypass the CSRF protection mechanism via an empty token.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
revive-adserver revive adserver |