[yetiforce/yetiforce-crm] Cross site scripting in yetiforce/yetiforce-crm

Cross-site Scripting (XSS) – Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-2890
• https://github.com/yetiforcecompany/yetiforcecrm/commit/2c14baaf8dbc7fd82d5c585f2fa0c23528450618
• https://huntr.dev/bounties/5d228a33-eda3-4cff-91da-7bc43e6636da
• https://github.com/advisories/GHSA-jhxh-68jj-68c7