CVE-2025-55127

Medium CVSS: 5.4

HackerOne community member Dao Hoang Anh (yoyomiski) has reported an improper neutralization of whitespace in the username when adding new users. A username with leading or trailing whitespace could be virtually indistinguishable from its legitimate counterpart when the username is displayed in the UI, potentially leading to confusion.

Vendor

Aquaplatform

Product

Revive Adserver

CWE

CWE-156

Yayın Tarihi

2025-11-20 19:16:19

Güncelleme

2026-01-14 21:18:27

Source Identifier

support@hackerone.com

KEV Date Added

Kategoriler

CWE-156 Revive Adserver MEDIUM Aquaplatform 2025

Referanslar

https://hackerone.com/reports/3413764

Benzer Kayıtlar

Medium

CVE-2026-21664

HackerOne community member Huynh Pham Thanh Luc (nigh7c0r3) has reported a reflected XSS vulnerability in the afr.php de…

Low

CVE-2026-21640

HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the Revive Adserver setti…

Medium

CVE-2026-21641

HackerOne community member Jad Ghamloush (0xjad) has reported an authorization bypass vulnerability in the `tracker-dele…

Medium

CVE-2026-21642

HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the `banner-acl.php` and `ch…

Medium

CVE-2026-21663

HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the banner-acl.php script of…

Medium

CVE-2025-55129

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adserver was still vulner…