Fullstackhero .net 9 Starter Kit — known CVE vulnerabilities
Every CVE whose affected-product data names Fullstackhero .net 9 Starter Kit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2024-26470 — CVSS 8.1 (high): A host header injection vulnerability in the forgot password function of FullStackHero's WebAPI Boilerplate v1.0.0 and v1.0.1 allows…