Описание
YetiForce CRM vulnerable to stored Cross-site Scripting
YetiForce CRM version 6.4.0 and prior is vulnerable to stored cross-site scripting. A patch is available on the developer branch.
Пакеты
Наименование
yetiforce/yetiforce-crm
composer
Затронутые версииВерсия исправления
<= 6.4.0
Отсутствует
Связанные уязвимости
CVSS3: 5.4
nvd
больше 3 лет назад
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.