9 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
46.5%
SQL injection vulnerability in adherents/subscription/info.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the rowid parameter.
github.com/Dolibarr/dolibarr
github.com/Dolibarr/dolibarr/commit/4a5988accbb770b74105baacd5a034689272128c
nvd.nist.gov/vuln/detail/CVE-2017-17899