5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.9%
admin/limits.php in Dolibarr 7.0.2 allows HTML injection, as demonstrated by the MAIN_MAX_DECIMALS_TOT parameter.
github.com/Dolibarr/dolibarr/issues/20237
github.com/mustgundogdu/Research/blob/main/Dolibar_7.0.2-StoredXSS/README.md