AI Score
Confidence
High
EPSS
Percentile
50.1%
Dolibarr ERP and CRM 13.0.2 allows XSS via object details, as demonstrated by > and < characters in the onpointermove attribute of a BODY element to the user-management feature.
seclists.org/fulldisclosure/2021/Nov/38
github.com/Dolibarr/dolibarr/releases
trovent.github.io/security-advisories/TRSA-2105-02/TRSA-2105-02.txt
trovent.io/security-advisory-2105-02