Yetiforce/yetiforce-crm

This hub aggregates every CVE we track for Yetiforce/yetiforce-crm, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Yetiforce/yetiforce-crm.

• CVE-2023-49508Directory Traversal vulnerability in YetiForceCompany YetiForceCRM versions 6.4.0 and before allows a remote authenticated attacker to obtain sensitive information via the license parameter in the ...6.5Feb 16, 2024
• CVE-2022-3002Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Oct 6, 2022
• CVE-2022-3005Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Sep 20, 2022
• CVE-2022-3004Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Sep 20, 2022
• CVE-2022-3000Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Sep 20, 2022
• CVE-2022-2924Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Sep 20, 2022
• CVE-2022-2890Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Aug 22, 2022
• CVE-2022-1340Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Aug 22, 2022
• CVE-2022-2885Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm4.8Aug 21, 2022
• CVE-2022-1411Unrestructed file upload in yetiforcecompany/yetiforcecrm6.1May 5, 2022
• CVE-2022-0269Cross-Site Request Forgery (CSRF) in yetiforcecompany/yetiforcecrm8.0Jan 24, 2022
• CVE-2021-4121Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm6.1Dec 16, 2021
• CVE-2021-4117Business Logic Errors in yetiforcecompany/yetiforcecrm4.3Dec 15, 2021
• CVE-2021-4116Cross-site Scripting (XSS) - Stored in yetiforcecompany/yetiforcecrm5.4Dec 15, 2021
• CVE-2021-4111Business Logic Errors in yetiforcecompany/yetiforcecrm4.3Dec 15, 2021