Yetiforce Customer Relationship Management Security Vulnerabilities and Issues — Yetiforce Customer Relationship Management CVE List

Lucene search

YetiforceYetiforce Customer Relationship Management

11 matches found

CVE•added 2022/08/21 8:15 a.m.•83 views

CVE-2022-2885

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

6.7CVSS5.1AI score0.0005EPSS

CVE•added 2022/05/05 11:15 a.m.•74 views

CVE-2022-1411

Unrestructed file upload in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0. Attacker can send malicious files to the victims is able to retrieve the stored data from the web application without that data being made safe to render in the browser and steals victim's cookie leads to ac...

9.1CVSS6.5AI score0.0029EPSS

CVE•added 2022/09/20 7:15 a.m.•70 views

CVE-2022-3000

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

6.3CVSS5.4AI score0.00075EPSS

CVE•added 2022/08/22 12:15 p.m.•67 views

CVE-2022-1340

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

7CVSS5.5AI score0.00095EPSS

CVE•added 2022/10/06 6:16 p.m.•66 views

CVE-2022-3002

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

5.4CVSS5.2AI score0.0098EPSS

CVE•added 2022/09/20 6:15 a.m.•65 views

CVE-2022-2924

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.3.

7.1CVSS5.5AI score0.00964EPSS

CVE•added 2022/01/24 12:15 p.m.•63 views

CVE-2022-0269

Cross-Site Request Forgery (CSRF) in Packagist yetiforce/yetiforce-crm prior to 6.3.0.

8CVSS7.8AI score0.00138EPSS

CVE•added 2022/09/20 10:15 a.m.•58 views

CVE-2022-3004

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

6.3CVSS5.4AI score0.00082EPSS

CVE•added 2022/08/22 2:15 p.m.•56 views

CVE-2022-2890

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

9CVSS5.6AI score0.00131EPSS

CVE•added 2022/09/20 11:15 a.m.•56 views

CVE-2022-3005

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

5.4CVSS5.2AI score0.00111EPSS

CVE•added 2022/08/23 4:15 a.m.•48 views

CVE-2022-2829

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

8.8CVSS5.7AI score0.0012EPSS