CVE-2025-5990 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in Crafty Controller

Main / CVE-2025-5990 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in Crafty Controller

Discription

An input neutralization vulnerability in the Server Name form and API Key form components of Crafty Controller allows a remote, authenticated attacker to perform stored XSS via malicious form…Read More

References

Back to Main

Subscribe for the latest news: