CVE-2021-4117: yetiforcecrm is vulnerable to Business Logic Errors

December 16, 2021 (updated January 3, 2022)

yetiforcecrm is vulnerable to Business Logic Errors

References

github.com/advisories/GHSA-cxg7-84wp-8pcq
github.com/yetiforcecompany/yetiforcecrm/commit/8dccd93442725f245b4b71986bbe6f4f48639239
huntr.dev/bounties/0b81e572-bdc9-4caf-aa02-81f3c7ad7c0a
nvd.nist.gov/vuln/detail/CVE-2021-4117

Detect and mitigate CVE-2021-4117 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →