Lucene search

Cross-Site Request Forgery (CSRF)

🗓️ 13 Dec 2021 10:36:21Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 19 Views

yetiforce-crm CSRF vulnerability in PasswordModalFooter.tp

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Cvelist	CVE-2021-4092 Cross-Site Request Forgery (CSRF) in yetiforcecompany/yetiforcecrm	11 Dec 202113:35	–	cvelist
Prion	Cross site request forgery (csrf)	11 Dec 202114:15	–	prion
CNVD	Yetiforcecrm Cross-site Request Forgery Vulnerability	14 Dec 202100:00	–	cnvd
NVD	CVE-2021-4092	11 Dec 202114:15	–	nvd
CVE	CVE-2021-4092	11 Dec 202114:15	–	cve
Huntr	Cross-Site Request Forgery (CSRF) in yetiforcecompany/yetiforcecrm	9 Dec 202102:53	–	huntr
OSV	GHSA-V4CR-M5F8-GXW8 yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)	16 Dec 202114:14	–	osv
OSV	CVE-2021-4092	11 Dec 202114:15	–	osv
Github Security Blog	yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)	16 Dec 202114:14	–	github

Vulners

Node

yetiforce-crm yetiforce/yetiforce-crmRange6.0.0a–6.2.0php

Source	Link
github	www.github.com/yetiforcecompany/yetiforcecrm/commit/585da04bb72d36a894f6ea5939ab909e53fd8c23
huntr	www.huntr.dev/bounties/7b58c160-bb62-45fe-ad1f-38354378b89e/
huntr	www.huntr.dev/bounties/7b58c160-bb62-45fe-ad1f-38354378b89e

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Dec 2021 10:21Current

4Medium risk

Vulners AI Score4

CVSS24.3

CVSS34.3

EPSS0.00098