A CRLF injection vulnerability in E-Staff v5.1 allows attackers to insert Carriage Return (CR) and Line Feed (LF) characters into input fields, leading to HTTP response splitting and header manipulation.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| datex-soft | e-staff | 5.1 |