Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

YetiForce CRM Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-0269)

Description

Cross-Site Request Forgery (CSRF) in Packagist yetiforce/yetiforce-crm prior to 6.3.0.

Remediation

References

Related Vulnerabilities

Plone CMS Incorrect Default Permissions Vulnerability (CVE-2024-22889)

XWiki Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') Vulnerability (CVE-2023-37462)

WordPress Plugin Ad Swapper Cross-Site Scripting (1.0.3)

PHP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2023-3823)

MySQL CVE-2017-10284 Vulnerability (CVE-2017-10284)

Severity

High

Classification

CVE-2022-0269 CWE-352 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities