Vulnerabilities (CVE)

Filtered by vendor Datex-soft Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-40324 1 Datex-soft 1 E-staff 2024-11-21 N/A 5.4 MEDIUM
A CRLF injection vulnerability in E-Staff v5.1 allows attackers to insert Carriage Return (CR) and Line Feed (LF) characters into input fields, leading to HTTP response splitting and header manipulation.