CVE-2016-9125
Revive Adserver before 3.2.3 suffers from session fixation, by allowing arbitrary session identifiers to be forced and, at the same time, by not invalidating the existing session upon a successful authentication. Under some circumstances, that could have been an opportunity for an attacker to steal an authenticated session.List of 729 websites affected by CVE-2016-9125
The domain names are hidden due to the sensitivity of the data. Please click on the "Contact us" button above to get more information.
| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***********.ro |  Romania | **,*** | |
| ******.com |  United States | **,*** | |
| ************************.**.uk |  GB | **,*** | |
| ********.rs |  Serbia | **,*** | |
| *******.com | United States | **,*** | |
| *******.it |  Italy | ***,*** | |
| ***********.com | United States | ***,*** | |
| ****************.org |  Cyprus | ***,*** | |
| ******************.de |  Germany | ***,*** | |
| ***********.it | United States | ***,*** | |
| *************.com | United States | ***,*** | |
| ********.com | United States | ***,*** | |
| ************.com | Germany | ***,*** | |
| ***********.com | United States | ***,*** | |
| ***********.com | United States | ***,*** | |
| ******.com | United States | ***,*** | |
| *****.********.com |  France | ***,*** | |
| **********.pl |  Poland | ***,*** | |
| **********************.es |  Spain | ***,*** | |
| **************.com | United States | ***,*** |