CVE-2024-40324 Information

Description

A CRLF injection vulnerability in E-Staff v5.1 allows attackers to insert Carriage Return (CR) and Line Feed (LF) characters into input fields leading to HTTP response splitting and header manipulation.

Reference

https://github.com/aleksey-vi/CVE-2024-40324