yetiforce/yetiforce-crm Security Advisories (16)
-
Reported by:
GitHub -
YetiForce CRM vulnerable to stored Cross-site Scripting via LayoutEditor module
Affected version: <=6.4.0
Reported by:
GitHub -
YetiForce CRM vulnerable to stored Cross-site Scripting via SlaPolicy module
Affected version: <=6.4.0
Reported by:
GitHub -
YetiForce CRM vulnerable to stored Cross-site Scripting via WorkFlow module
Affected version: <=6.4.0
Reported by:
GitHub -
YetiForce CRM vulnerable to stored Cross-site Scripting via WidgetsManagement module
Affected version: <=6.4.0
Reported by:
GitHub -
Reported by:
GitHub -
Reported by:
GitHub -
Reported by:
GitHub -
Unrestricted Upload of File with Dangerous Type in yetiforce-crm
Affected version: <6.4.0
Reported by:
GitHub -
Reported by:
GitHub -
Reported by:
GitHub -
YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number
Affected version: <=6.3.0
Reported by:
GitHub -
YetiForceCRM is vulnerable to Business Logic Errors in the weight of a product
Affected version: <=6.3.0
Reported by:
GitHub -
Reported by:
GitHub -
yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)
Affected version: <6.3.0
Reported by:
GitHub -
Reported by:
GitHub