Lucene search
@huntrdevCVELIST:CVE-2021-4092HistoryDec 11, 2021 - 1:35 p.m.
CVE-2021-4092 Cross-Site Request Forgery (CSRF) in yetiforcecompany/yetiforcecrm
2021-12-1113:35:12
CWE-352
@huntrdev
www.cve.org
7
yetiforcecrm
csrf
vulnerability
cve-2021-4092
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
AI Score
5
Confidence
High
EPSS
0.001
Percentile
31.4%
yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)
CNA Affected
[
{
"product": "yetiforcecompany/yetiforcecrm",
"vendor": "yetiforcecompany",
"versions": [
{
"lessThan": "6.3.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2021-12-11 14:15:00
cnvd
cnvd
Yetiforcecrm Cross-site Request Forgery Vulnerability
2021-12-14 00:00:00
veracode
veracode
Cross-Site Request Forgery (CSRF)
2021-12-13 10:21:36
nvd
nvd
CVE-2021-4092
2021-12-11 14:15:07
cve
cve
CVE-2021-4092
2021-12-11 14:15:07
osv
osv
CVE-2021-4092
2021-12-11 14:15:07
yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)
2021-12-16 14:14:56
huntr
huntr
Cross-Site Request Forgery (CSRF) in yetiforcecompany/yetiforcecrm
2021-12-09 02:53:32
github
github
yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)
2021-12-16 14:14:56
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
AI Score
5
Confidence
High
EPSS
0.001
Percentile
31.4%
Related for CVELIST:CVE-2021-4092