Security Advisory

CVE-2026-21640

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-20 20:48:47

Last updated 2026-01-21 18:52:43

Assigner hackerone

State PUBLISHED

Description

HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the Revive Adserver settings. When specific character combinations are used in a setting, the admin user console could be disabled due to a fatal PHP error.

← Browse all CVEs View on cve.org ↗