Craftycontrol: >> Crafty Controller >> 4.6.1 Security Vulnerabilities
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
CVSS Score
8.2
EPSS Score
0.0
Published
2026-01-30
An input neutralization vulnerability in the Webhook Template component of Crafty Controller allows a remote, authenticated attacker to perform remote code execution via Server Side Template Injection.
CVSS Score
9.9
EPSS Score
0.001
Published
2025-12-17
An input neutralization vulnerability in the Server MOTD component of Crafty Controller allows a remote, unauthenticated attacker to perform stored XSS via server MOTD modification.
CVSS Score
7.1
EPSS Score
0.001
Published
2025-12-17