[yetiforce/yetiforce-crm] Cross site scripting in yetiforce/yetiforce-crm

Cross-site Scripting (XSS) – Stored in GitHub repository yetiforcecompany/yetiforcecrm prior to 6.4.0.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-2885
• https://github.com/yetiforcecompany/yetiforcecrm/commit/a9ad9ee089b575855b9e5e202b4990a15811e8d2
• https://huntr.dev/bounties/edeed309-be07-4373-b15e-2d1eb415eb89
• https://github.com/advisories/GHSA-rjvc-mf7r-ch7r