Vulnerabilities > Yetiforce > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-05 | CVE-2022-1411 | Unrestricted Upload of File with Dangerous Type vulnerability in Yetiforce Customer Relationship Management Unrestructed file upload in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0. | 6.1 |
| 2021-12-16 | CVE-2021-4121 | Unspecified vulnerability in Yetiforce Customer Relationship Management yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 6.1 |
| 2021-12-15 | CVE-2021-4117 | Improper Input Validation vulnerability in Yetiforce Customer Relationship Management yetiforcecrm is vulnerable to Business Logic Errors | 4.3 |
| 2021-12-15 | CVE-2021-4116 | Unspecified vulnerability in Yetiforce Customer Relationship Management yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 5.4 |
| 2021-12-15 | CVE-2021-4111 | Improper Input Validation vulnerability in Yetiforce Customer Relationship Management yetiforcecrm is vulnerable to Business Logic Errors | 4.3 |
| 2021-12-14 | CVE-2021-4107 | Unspecified vulnerability in Yetiforce Customer Relationship Management yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 6.1 |
| 2021-12-11 | CVE-2021-4092 | Unspecified vulnerability in Yetiforce Customer Relationship Management yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF) | 4.3 |