bottelet/flarepoint Security Advisories for 1.1.5 (3)
-
[MEDIUM] Cross-site Scripting in DayByDay CRM
PKSA-tn5p-kgp2-g7nh CVE-2022-22109 GHSA-jr37-66pj-36v7
Affected version: <2.2.1
Reported by:
GitHub -
[HIGH] Weak Password Requirements in Daybyday CRM
PKSA-t3c4-shkv-kdr7 CVE-2022-22110 GHSA-96v6-hrwg-p378
Affected version: >=1.1,<2.2.1
Reported by:
GitHub -
[HIGH] Missing Authorization in DayByDay CRM
PKSA-tn6c-4k2y-ktgn CVE-2022-22111 GHSA-w6rp-4vj7-v2m8
Affected version: <2.2.1
Reported by:
GitHub