Description Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0. Remediation References CVE-2022-3005 Related Vulnerabilities Apache HTTP Server Interpretation Conflict Vulnerability (CVE-2022-37436) WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-4894) WordPress Plugin Pressbooks Cross-Site Scripting (2.4.2) Internet Information Services Other Vulnerability (CVE-2000-1104) Atlassian Jira Incorrect Authorization Vulnerability (CVE-2019-3403) Severity Medium Classification CVE-2022-3005 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities