CVE-2021-22889
Summary: Revive Adserver prior to v5.2.0 is affected by a reflected XSS in the statsBreakdown parameter (stats.php) caused by unescaped single quotes. An attacker with UI access could lure a user into a crafted URL and, by triggering a key combination, execute injected JavaScript in the context o...