Unrated severityNVD Advisory· Published May 6, 2019· Updated Aug 4, 2024
CVE-2019-5433
CVE-2019-5433
Description
A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a specifically crafted admin account-switch.php URL that would eventually lead them to another (unsafe) domain, potentially used for stealing credentials or other phishing attacks. This vulnerability was addressed in version 4.2.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.2.0+ 1 more
- (no CPE)range: <4.2.0
- (no CPE)range: Fixed version v4.2.0
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/390663mitrex_refsource_MISC
- www.revive-adserver.com/security/revive-sa-2019-001/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.