GHSA-jhxh-68jj-68c7

GitHub Security Advisory

Cross site scripting in yetiforce/yetiforce-crm

✓ GitHub Reviewed MODERATE Has CVE

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

Packagist yetiforce/yetiforce-crm

Affected versions: 0 (fixed in 6.4.0)

CVE-2022-2890

GHSA ID

GHSA-jhxh-68jj-68c7

Published

August 23, 2022 12:00 AM

Last Modified

August 30, 2022 8:42 PM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

yetiforce/yetiforce-crm

GitHub Reviewed

✓ Yes

Last updated: September 15, 2025 6:32 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.