CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-50742

mediumCVSS 5.4covered by 1 sourcefirst seen 2026-06-26
A stored XSS vulnerabilities exists in the maintenance-acl-check.php and maintenance-banners-check.php tools of Revive Adserver 6.0.7. The issue was caused by entity names being displayed without proper escaping when inconsistencies were detected. Whether the XSS payload is executed when an administrator uses the affected maintenance tools is not entirely under the attacker's control.

⚡ Watch CVE-2026-50742

Get an email if CVE-2026-50742 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-50742

CVE.org record

Embed the live status

CVE-2026-50742 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-50742 status](https://www.csirts.com/badge/CVE-2026-50742)](https://www.csirts.com/cve/CVE-2026-50742)