CVE-2024-29643: croogo Host header injection

Severity: Critical

CVSS Score: 9.1

An issue in croogo v.3.0.2 allows an attacker to perform Host header injection via the feed.rss component.