A CRLF injection vulnerability in E-Staff v5.1 allows attackers to insert Carriage Return (CR) and Line Feed (LF) characters into input fields, leading to HTTP response splitting and header manipulation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/aleksey-vi/CVE-2024-40324 |
History
Mon, 26 Aug 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-74 |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-07-25T00:00:00
Updated: 2024-08-02T04:33:11.656Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40324
Vulnrichment
Updated: 2024-07-29T19:14:28.963Z
NVD
Status : Modified
Published: 2024-07-25T20:15:05.077
Modified: 2024-11-21T09:30:59.933
Link: CVE-2024-40324
Redhat
No data.