VULHUB ™

Revista is prone to multiple input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - A remote file-include vulnerability - Multiple SQL-injection vulnerabilities - An authentication-bypass vulnerability Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitrary PHP code within the context of the webserver, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database Revista 1.1.2 is vulnerable; other versions may also be affected. Note: These issues have been reported in BID 19818 (Revista Multiple Input Validation Vulnerabilities); therefore this BID is being retired.

Revista is prone to multiple input-validation vulnerabilities, including: - Multiple cross-site scripting vulnerabilities - A remote file-include vulnerability - Multiple SQL-injection vulnerabilities - An authentication-bypass vulnerability Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute arbitrary PHP code within the context of the webserver, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database Revista 1.1.2 is vulnerable; other versions may also be affected. Note: These issues have been reported in BID 19818 (Revista Multiple Input Validation Vulnerabilities); therefore this BID is being retired.