CVE-2025-5990 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in Crafty Controller

An input neutralization vulnerability in the Server Name form and API Key form components of Crafty Controller allows a remote, authenticated attacker to perform stored XSS via malicious form…Read More