CVE-2020-8143

Name of the Vulnerable Software and Affected Versions Revive Adserver versions prior to 5.0.5

Description A remote attacker could trick logged-in users into opening a specifically crafted link, redirecting them to any destination. The CSRF protection of the "/www/admin/*-modify.php" endpoint could be bypassed if no meaningful parameter was sent, allowing the user to be redirected to the target page specified via the returnurl GET parameter.

Recommendations For Revive Adserver versions prior to 5.0.5, update to version 5.0.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/www/admin/*-modify.php" endpoint to minimize the risk of exploitation. Avoid using the returnurl parameter in the affected endpoint until the issue is resolved.