A vulnerability classified as problematic has been found in Revive Adserver up to 6.0.7. This affects an unknown function of the file zone-include.php. This manipulation of the argument refresh causes cross site scripting.
This vulnerability is tracked as CVE-2026-50740. The attack is possible to be carried out remotely. No exploit exists.
