CVE-2025-50891

Publication date

2025-08-19 00:00:00

Family

mitre

State

PUBLISHED

Description

The server-side backend for Adform Site Tracking before 2025-08-28 allows attackers to inject HTML or execute arbitrary code via cookie hijacking. NOTE: a customer does not need to take any action to update locally installed software (such as Adform Site Tracking 1.1).