GHSA-rjvc-mf7r-ch7r

GitHub Security Advisory

Cross site scripting in yetiforce/yetiforce-crm

✓ GitHub Reviewed MODERATE Has CVE

Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

Packagist yetiforce/yetiforce-crm

Affected versions: 0 (fixed in 6.4.0)

CVE-2022-2885

GHSA ID

GHSA-rjvc-mf7r-ch7r

Published

August 22, 2022 12:00 AM

Last Modified

August 30, 2022 8:49 PM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

yetiforce/yetiforce-crm

GitHub Reviewed

✓ Yes

Last updated: September 15, 2025 6:32 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.