yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
References
Link | Resource |
---|---|
https://github.com/yetiforcecompany/yetiforcecrm/commit/a062d3d5fecb000db207a2ad8a446db97ad96b89 | Patch Third Party Advisory |
https://huntr.dev/bounties/1d124520-cf29-4539-a0f3-6d041af7b5a8 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-12-14T14:20:13
Updated: 2021-12-14T14:20:13
Reserved: 2021-12-13T00:00:00
Link: CVE-2021-4107
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-14T15:15:07.430
Modified: 2021-12-15T20:31:37.277
Link: CVE-2021-4107
JSON object: View
Redhat Information
No data.
CWE