Lucene search
GitHub Advisory DatabaseGHSA-HV2J-6654-X74QHistoryJun 03, 2024 - 9:30 p.m.
Reflected Cross-Site Scripting (XSS) in Dolibarr
2024-06-0321:30:45
CWE-79
GitHub Advisory Database
github.com
1
reflected cross-site scripting
dolibarr
remote attack
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
5.5
Confidence
High
A Reflected Cross-site scripting (XSS) vulnerability located in htdocs/compta/paiement/card.php of Dolibarr before 19.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into the facid parameter.
Affected configurations
Node
dolibarrdolibarrRange<19.0.2
Related
osv
osv
Reflected Cross-Site Scripting (XSS) in Dolibarr
2024-06-03 21:30:45
CVE-2024-34051
2024-06-03 20:15:00
nvd
nvd
CVE-2024-34051
2024-06-03 20:15:09
cvelist
cvelist
CVE-2024-34051
1976-01-01 00:00:00
vulnrichment
vulnrichment
CVE-2024-34051
1976-01-01 00:00:00
veracode
veracode
Reflected Cross Site Scripting (XSS)
2024-06-06 08:38:57
ubuntucve
ubuntucve
CVE-2024-34051
2024-06-03 00:00:00
cve
cve
CVE-2024-34051
2024-06-03 20:15:09
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
5.5
Confidence
High
Related for GHSA-HV2J-6654-X74Q