4 matches found
CVE-2022-3004 Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm
Cross-site Scripting XSS - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0...
CVE-2022-3004 Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm
Cross-site Scripting XSS - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0...
CVE-2022-3004
Summary: CVE-2022-3004 is a stored XSS vulnerability in YetiForce CRM, affecting versions prior to 6.4.0, reported across multiple sources (OSV, Red Hat, GHSA, CNNVD, CVE records). What is affected: YetiForce CRM in the Workflow module; vulnerability arises from unvalidated/undefined workflowMode...
CVE-2022-3004 Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm
Cross-site Scripting XSS - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0...