Security Advisories - bottelet/flarepoint - Packagist

bottelet/flarepoint Security Advisories for 1.3.6 (3)

[MEDIUM] Cross-site Scripting in DayByDay CRM

PKSA-tn5p-kgp2-g7nh CVE-2022-22109 GHSA-jr37-66pj-36v7

Affected version: <2.2.1

Reported by:
GitHub
[HIGH] Weak Password Requirements in Daybyday CRM

PKSA-t3c4-shkv-kdr7 CVE-2022-22110 GHSA-96v6-hrwg-p378

Affected version: >=1.1,<2.2.1

Reported by:
GitHub
[HIGH] Missing Authorization in DayByDay CRM

PKSA-tn6c-4k2y-ktgn CVE-2022-22111 GHSA-w6rp-4vj7-v2m8

Affected version: <2.2.1

Reported by:
GitHub