2 matches found
CVE-2022-2890 Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm
Cross-site Scripting XSS - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0...
CVE-2022-2890
CVE-2022-2890 is a stored XSS in YetiforceCRM prior to version 6.4.0. Affected product: YetiforceCRM web application (GitHub repository). Root cause: XSS vulnerability in the application before 6.4.0 (no details on specific input vector provided in the documents). Impact: permits cross-site scrip...