CVE-2026-50742

Name of the Vulnerable Software and Affected Versions Revive Adserver version 6.0.7

Description Stored Cross-Site Scripting (XSS) occurs in the maintenance-acl-check.php and maintenance-banners-check.php tools. The issue arises when entity names are displayed without proper escaping during the detection of inconsistencies. This allows a stored script to be executed when an administrator utilizes these maintenance tools, although the exact execution is not fully controllable by the attacker.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.