Описание
The server-side backend for Adform Site Tracking before 2025-08-28 allows attackers to inject HTML or execute arbitrary code via cookie hijacking. NOTE: a customer does not need to take any action to update locally installed software (such as Adform Site Tracking 1.1).
EPSS
Процентиль: 24%
0.00079
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-79
CWE-77
Связанные уязвимости
CVSS3: 6.5
github
6 месяцев назад
Adform Site Tracking 1.1 allows attackers to inject HTML or execute arbitrary code via cookie hijacking.
EPSS
Процентиль: 24%
0.00079
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-79
CWE-77