Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-4748

The CRUDDIY project is vulnerable to shell command injection via sending a crafted POST request to the application server.  The exploitation risk is limited since CRUDDIY is meant to be launched locally. Nevertheless, a user with the project running on their computer might visit a website which would send such a malicious request to the locally launched server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.8%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2024-4748
  • J11g » Cruddiy » Version: N/A
    cpe:2.3:a:j11g:cruddiy:-
  • J11g » Cruddiy » Version: 1.0
    cpe:2.3:a:j11g:cruddiy:1.0
  • J11g » Cruddiy » Version: 2.0
    cpe:2.3:a:j11g:cruddiy:2.0
  • J11g » Cruddiy » Version: 2.1
    cpe:2.3:a:j11g:cruddiy:2.1
  • J11g » Cruddiy » Version: 2.2
    cpe:2.3:a:j11g:cruddiy:2.2
  • J11g » Cruddiy » Version: 2.3
    cpe:2.3:a:j11g:cruddiy:2.3
  • J11g » Cruddiy » Version: 2.4
    cpe:2.3:a:j11g:cruddiy:2.4
  • J11g » Cruddiy » Version: 2.5
    cpe:2.3:a:j11g:cruddiy:2.5
  • J11g » Cruddiy » Version: 202311.1
    cpe:2.3:a:j11g:cruddiy:202311.1
  • J11g » Cruddiy » Version: 202311.2
    cpe:2.3:a:j11g:cruddiy:202311.2
  • J11g » Cruddiy » Version: 202312.1
    cpe:2.3:a:j11g:cruddiy:202312.1
  • J11g » Cruddiy » Version: 3.0
    cpe:2.3:a:j11g:cruddiy:3.0
  • J11g » Cruddiy » Version: 3.1
    cpe:2.3:a:j11g:cruddiy:3.1
  • J11g » Cruddiy » Version: 3.2
    cpe:2.3:a:j11g:cruddiy:3.2
  • J11g » Cruddiy » Version: 3.3
    cpe:2.3:a:j11g:cruddiy:3.3
  • J11g » Cruddiy » Version: 3.4
    cpe:2.3:a:j11g:cruddiy:3.4
  • J11g » Cruddiy » Version: 3.5
    cpe:2.3:a:j11g:cruddiy:3.5


Products
Pricing
Contact Us

Shodan ® - All rights reserved