A vulnerability classified as problematic has been found in Revive Adserver up to 6.0.7 . This affects an unknown function of the file zone-include.php . This manipulation of the argument refresh causes cross site scripting. This vulnerability is tracked as CVE-2026-50740 . The attack is possible to be carried out remotely. No exploit exists.