Product:

Yetiforce_customer_relationship_management

(Yetiforce)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 18
Date Id Summary Products Score Patch Annotated
2024-02-16 CVE-2023-49508 Directory Traversal vulnerability in YetiForceCompany YetiForceCRM versions 6.4.0 and before allows a remote authenticated attacker to obtain sensitive information via the license parameter in the LibraryLicense.php component. Yetiforce_customer_relationship_management 6.5
2021-12-11 CVE-2021-4092 yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF) Yetiforce_customer_relationship_management 4.3
2021-12-14 CVE-2021-4107 yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Yetiforce_customer_relationship_management 6.1
2021-12-15 CVE-2021-4111 yetiforcecrm is vulnerable to Business Logic Errors Yetiforce_customer_relationship_management 4.3
2021-12-15 CVE-2021-4116 yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Yetiforce_customer_relationship_management 5.4
2021-12-15 CVE-2021-4117 yetiforcecrm is vulnerable to Business Logic Errors Yetiforce_customer_relationship_management 4.3
2021-12-16 CVE-2021-4121 yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Yetiforce_customer_relationship_management 6.1
2022-01-24 CVE-2022-0269 Cross-Site Request Forgery (CSRF) in Packagist yetiforce/yetiforce-crm prior to 6.3.0. Yetiforce_customer_relationship_management 8.0