Skip to main content
CVE-2024-1064 HIGH POC This Week

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service (DoS) condition via a modified host. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Crafty Controller
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2024-1199 HIGH This Week

A vulnerability has been found in CodeAstro Employee Task Management System 1.0 and classified as problematic. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Denial Of Service Employee Task Management System
NVD VulDB
CVSS 3.1
7.5
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy