While working on putting-the-you-in-cpu project, I found that user-controlled file paths are not properly sanitized. Inputs containing CRLF characters can inject additional FTP commands, potentially allowing unauthorized file operations or server-side actions.
CVE Report
CVE Link
While working on putting-the-you-in-cpu project, I found that user-controlled file paths are not properly sanitized. Inputs containing CRLF characters can inject additional FTP commands, potentially allowing unauthorized file operations or server-side actions.
CVE Report
CVE Link