CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Craftycontrol: >> Crafty Controller >> 4.7.0 Security Vulnerabilities

CVE-2026-0963

An input neutralization vulnerability in the File Operations API Endpoint component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.

CVSS Score

9.9

EPSS Score

0.001

Published

2026-01-30

Page 1

Vulnerabilities

Vulnerable Software

Craftycontrol: >> Crafty Controller >> 4.7.0 Security Vulnerabilities

Products

Pricing

Contact Us