GHSA-2qf8-h7pr-x2r8, CVE-2022-2924
packagist/yetiforce/yetiforce-crm
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.3.
All versions up to 6.4.0
Unfortunately, there is no solution available yet.
2022-09-22
source |