Vulnerability Details CVE-2021-4116
yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.9%
CVSS Severity
CVSS v3 Score 6.6
CVSS v2 Score 3.5
References
- https://github.com/yetiforcecompany/yetiforcecrm/commit/9cdb012ca64ff1f719f8120d5fd162cd5ef1013f
- https://huntr.dev/bounties/7561bae7-9053-4dc8-aa59-b71acfb1712c
- https://github.com/yetiforcecompany/yetiforcecrm/commit/9cdb012ca64ff1f719f8120d5fd162cd5ef1013f
- https://huntr.dev/bounties/7561bae7-9053-4dc8-aa59-b71acfb1712c
Products affected by CVE-2021-4116
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:-
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:1.1.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:1.2.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:1.3.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:1.4.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:2.0.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:2.1.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:2.2.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:2.3.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:2.3.16
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:2.3.49
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:3.0.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:3.1.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:3.2.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:3.3.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:3.4.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:4.0.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:4.1.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:4.2.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:4.3.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:4.4.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:5.0.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:5.1.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:5.2.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:5.3.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:6.0.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:6.1.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:6.2.0
-
cpe:2.3:a:yetiforce:yetiforce_customer_relationship_management:6.3.0