Cross-Site Request Forgery (CSRF) in Packagist yetiforce/yetiforce-crm prior to 6.3.0.
References
Link | Resource |
---|---|
https://github.com/yetiforcecompany/yetiforcecrm/commit/298c7870e6fe4332d8aa1757a9c8d79f841389ff | Patch Third Party Advisory |
https://huntr.dev/bounties/a0470915-f6df-45b8-b3a2-01aebe764df0 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-01-24T11:30:11
Updated: 2022-01-24T11:30:11
Reserved: 2022-01-18T00:00:00
Link: CVE-2022-0269
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-01-24T12:15:07.713
Modified: 2022-01-28T16:31:21.870
Link: CVE-2022-0269
JSON object: View
Redhat Information
No data.
CWE