9.9 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.2%
An issue was discovered in Dolibarr through 7.0.0. expensereport/card.php in the expense reports module allows SQL injection via the integer parameters qty and value_unit.
github.com/Dolibarr/dolibarr/issues/9449