Security for everyone

CVE-2021-22873 Scanner

Detects 'Open Redirect' vulnerability in Revive Adserver affects v. before 5.1.0.

SCAN NOW

Short Info


Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

30 sec

Scan only one

Url

Parent Category

CVE-2021-22873 Scanner Detail

Revive Adserver is a popular open-source advertising server software that is widely used to manage and deliver online advertising campaigns. It is primarily used by websites, mobile apps, and other digital channels to display advertisements to users. The software is designed to enable publishers to serve ads to different types of devices, offer various ad formats, and provide in-depth reporting and analytics.

CVE-2021-22873 is a recent vulnerability discovered in Revive Adserver, which can potentially enable attackers to launch open redirects via the `dest`, `oadest`, and/or `ct0` parameters of the lg.php and ck.php delivery scripts. This exploit can be used to redirect users to malicious websites or phishing pages, leading to information theft, malware attacks, or financial fraud.

Exploiting this vulnerability can lead to a variety of consequences for both publishers and website visitors. Attackers can hijack user sessions, steal personal information, create fake login pages, and introduce malware to users' devices. In addition, such malicious activity can result in the suspension, fines, or even legal action against the website or app that hosts the vulnerable advertising server.

At SecurityForEveryone.com, we offer a comprehensive suite of pro features that enable our customers to quickly and easily identify and address vulnerabilities in their digital assets. Whether you are a small business, a large enterprise, or an individual user, our platform provides you with the tools and resources you need to stay ahead of cyber threats and secure your online presence. So don't wait, sign up for our services today and protect your business and your customers from potential security risks.

 

REFERENCES

cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture