Description

Cross-Site Request Forgery (CSRF) in Packagist yetiforce/yetiforce-crm prior to 6.3.0.

Remediation

References

CVE-2022-0269

Related Vulnerabilities

WordPress Plugin Video Gallery /w YouTube, Vimeo Arbitrary File Upload (8.48)

RubyGems Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1000075)

Apache Tomcat CVE-2017-5651 Vulnerability (CVE-2017-5651)

Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2019-3823)

WordPress Plugin Simple Retail Menus SQL Injection (4.0.1)

Severity

High

Classification

CVE-2022-0269 CWE-352 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities