Shodan
Vulnerabilities
Vulnerable Software
Craftycontrol:  >> Crafty Controller  >> 4.8.0  Security Vulnerabilities
CVE-2026-5652
An insecure direct object reference vulnerability in the Users API component of Crafty Controller allows a remote, authenticated attacker to perform user modification actions via improper API permissions validation.
CVSS Score
9.0
EPSS Score
0.002
Published
2026-04-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved