CVE

CVE-2024-40324

Severity:

Pending analysis

Type:

Unavailable / Other

Publication date:

25/07/2024

Last modified:

26/07/2024

Description

A CRLF injection vulnerability in E-Staff v5.1 allows attackers to insert Carriage Return (CR) and Line Feed (LF) characters into input fields, leading to HTTP response splitting and header manipulation.

References to Advisories, Solutions, and Tools

https://github.com/aleksey-vi/CVE-2024-40324