bottelet/flarepoint Security Advisories for 2.2.0 (5)
-
[MEDIUM] Cross-site Scripting in DayByDay CRM
PKSA-tn5p-kgp2-g7nh CVE-2022-22109 GHSA-jr37-66pj-36v7
Affected version: <2.2.1
Reported by:
GitHub -
[MEDIUM] Missing Authorization in DayByDay CRM
PKSA-d6s8-j8rf-n92r CVE-2022-22107 GHSA-44gv-fgcj-w546
Affected version: >=2.0.0,<2.2.1
Reported by:
GitHub -
[MEDIUM] Missing Authorization in DayByDay CRM
PKSA-dsxp-cxyz-qdr2 CVE-2022-22108 GHSA-frxp-xxx8-hrg6
Affected version: >=2.0.0,<2.2.1
Reported by:
GitHub -
[HIGH] Weak Password Requirements in Daybyday CRM
PKSA-t3c4-shkv-kdr7 CVE-2022-22110 GHSA-96v6-hrwg-p378
Affected version: >=1.1,<2.2.1
Reported by:
GitHub -
[HIGH] Missing Authorization in DayByDay CRM
PKSA-tn6c-4k2y-ktgn CVE-2022-22111 GHSA-w6rp-4vj7-v2m8
Affected version: <2.2.1
Reported by:
GitHub