MEDIUM🇬🇧 English

CVE-2025-55127

CVSS 5.4v3.1pub. 2025-11-20upd. 2026-01-14

HackerOne community member Dao Hoang Anh (yoyomiski) has reported an improper neutralization of whitespace in the username when adding new users. A username with leading or trailing whitespace could be virtually indistinguishable from its legitimate counterpart when the username is displayed in the UI, potentially leading to confusion.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
  • Aquaplatform Revive Adserver

    APP
    Aquaplatform
    6.0.0 – 6.0.3 (bez)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2026-21664MEDIUM6.1ten sam produkt

HackerOne community member Huynh Pham Thanh Luc (nigh7c0r3) has reported a reflected XSS vulnerability in the ...

CVE-2026-21641MEDIUM6.5ten sam produkt

HackerOne community member Jad Ghamloush (0xjad) has reported an authorization bypass vulnerability in the `tr...

CVE-2026-21642MEDIUM6.1ten sam produkt

HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the `banner-acl.ph...

CVE-2026-21663MEDIUM6.1ten sam produkt

HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the banner-acl.php...

CVE-2025-55129MEDIUM5.4ten sam produkt

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adserver was st...

CVE-2025-55127 — MEDIUM 5.4 | CVEbaza.pl