A vulnerability, which was classified as problematic, has been found in yetiforcecrm (unknown version). This issue affects some unknown functionality of the component Web Page Generation Handler. Applying the patch 9cdb012ca64ff1f719f8120d5fd162cd5ef1013f is able to eliminate this problem. The bugfix is ready for download at github.com.
yetiforcecrm Web Page Generation cross site scripting
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker