Vulnerability CVE-2022-3005


Published: 2022-09-20

Description:
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.dev/bounties/4b144433-a979-4c4e-a627-659838acc217
https://github.com/yetiforcecompany/yetiforcecrm/commit/e55886781509fe39951fc7528347696474a17884

Copyright 2022, cxsecurity.com

 

Back to Top