CVE-2021-4111: yetiforcecrm is vulnerable to Business Logic Errors

December 16, 2021 (updated January 3, 2022)

yetiforcecrm is vulnerable to Business Logic Errors

References

github.com/advisories/GHSA-7v7w-f7c6-f829
github.com/yetiforcecompany/yetiforcecrm/commit/c1ad7111a090adfcd5898af40724907adc987acf
huntr.dev/bounties/8afc8981-baff-4082-b640-be535b29eb9a
nvd.nist.gov/vuln/detail/CVE-2021-4111

Code Behaviors & Features

Detect and mitigate CVE-2021-4111 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →