GHSA-qwc8-vjh3-gm2j, CVE-2022-3004
packagist/yetiforce/yetiforce-crm
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
All versions up to 6.4.0
Unfortunately, there is no solution available yet.
2022-09-22
source |