Mariusz Krzaczkowski

9 exploits Active since Dec 2021
CVE-2021-4107 WRITEUP MEDIUM WRITEUP
Yetiforce Customer Relationship Management < 6.3.0 - XSS
yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 6.1
CVE-2021-4116 WRITEUP MEDIUM WRITEUP
Yetiforce Customer Relationship Management < 6.3.0 - XSS
yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 5.4
CVE-2021-4117 WRITEUP MEDIUM WRITEUP
yetiforcecrm - Info Disclosure
yetiforcecrm is vulnerable to Business Logic Errors
CVSS 4.3
CVE-2022-0269 WRITEUP HIGH WRITEUP
yetiforce/yetiforce-crm <6.3.0 - CSRF
Cross-Site Request Forgery (CSRF) in Packagist yetiforce/yetiforce-crm prior to 6.3.0.
CVSS 8.0
CVE-2022-1340 WRITEUP MEDIUM WRITEUP
Yetiforce Customer Relationship Management < 6.4.0 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
CVSS 5.4
CVE-2022-2829 WRITEUP MEDIUM WRITEUP
yetiforcecompany/yetiforcecrm <6.4.0 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
CVSS 5.4
CVE-2022-2885 WRITEUP MEDIUM WRITEUP
yetiforcecompany/yetiforcecrm <6.4.0 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
CVSS 4.8
CVE-2022-2890 WRITEUP MEDIUM WRITEUP
yetiforcecompany/yetiforcecrm <6.4.0 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
CVSS 5.4
CVE-2022-3002 WRITEUP MEDIUM WRITEUP
yetiforcecompany/yetiforcecrm <6.4.0 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.
CVSS 5.4