CVE-2021-22873

MEDIUM EXPLOITED NUCLEI

Revive Adserver <5.1.0 - Open Redirect

Title source: llm

Description

Revive Adserver before 5.1.0 is vulnerable to open redirects via the `dest`, `oadest`, and/or `ct0` parameters of the lg.php and ck.php delivery scripts. Such open redirects had previously been available by design to allow third party ad servers to track such metrics when delivering ads. However, third party click tracking via redirects is not a viable option anymore, leading to such open redirect functionality being removed and reclassified as a vulnerability.

Exploits (1)

nomisec WORKING POC 1 stars
by K3ysTr0K3R · client-side
https://github.com/K3ysTr0K3R/CVE-2021-22873-EXPLOIT

Nuclei Templates (1)

Revive Adserver <5.1.0 - Open Redirect
MEDIUMVERIFIEDby pudsec
Shodan: http.favicon.hash:106844876 || http.title:"revive adserver"
FOFA: icon_hash=106844876 || title="revive adserver"

References (5)

Scores

CVSS v3 6.1
EPSS 0.4620
EPSS Percentile 97.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

VulnCheck KEV 2024-11-20
CWE
CWE-601
Status published
Products (1)
revive-adserver/revive_adserver < 5.1.0
Published Jan 26, 2021
Tracked Since Feb 18, 2026