CVE-2024-29643: An issue in croogo v.3.0.2 allows an attacker to perform Host header injection via the feed.rss component.
Description
An issue in croogo v.3.0.2 allows an attacker to perform Host header injection via the feed.rss component.
Classification
CVE ID: CVE-2024-29643
Affected Products
Vendor: n/a
Product: n/a
References
https://nvd.nist.gov/vuln/detail/CVE-2024-29643https://medium.com/@christbowel6/cve-2024-29643-host-header-injection-in-croogo-v3-0-2-0aded525f574