Vulnerabilities > Yetiforce > Yetiforce Customer Relationship Management > 6.4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-16 | CVE-2023-49508 | Path Traversal vulnerability in Yetiforce Customer Relationship Management Directory Traversal vulnerability in YetiForceCompany YetiForceCRM versions 6.4.0 and before allows a remote authenticated attacker to obtain sensitive information via the license parameter in the LibraryLicense.php component. | 6.5 |