Pricing Enterprise

CVE-2024-29643

9.1CRITICAL

An issue in croogo v.3.0.2 allows an attacker to perform Host header injection via the feed.rss component.

Published: 4/18/2025Updated: 5/28/2025

View on NVD View on MITRE

Description

An issue in croogo v.3.0.2 allows an attacker to perform Host header injection via the feed.rss component.

AI AnalysisPowered by AI

Affected Products

croogocroogo

3.0.2

References

https://medium.com/@christbowel6/cve-2024-29643-host-header-injection-in-croogo-v3-0-2-0aded525f574
ExploitPress/Media Coverage
https://medium.com/@christbowel6/cve-2024-29643-host-header-injection-in-croogo-v3-0-2-0aded525f574
ExploitPress/Media Coverage