Lucene search
GoogleOSV:GHSA-FVXR-767J-F28VHistoryMay 24, 2022 - 4:57 p.m.
Dolibarr stored Cross-site Scripting vulnerability
2022-05-2416:57:07
Google
osv.dev
2
Dolibarr 9.0.5 has stored XSS vulnerability via a User Group Description section to card.php. A user with the “Create/modify other users, groups and permissions” privilege can inject script and can also achieve privilege escalation.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dolibarr/dolibarr | eq | 9.0.5 |
Related
cvelist
cvelist
CVE-2019-16685
2019-09-27 19:05:11
github
github
Dolibarr stored Cross-site Scripting vulnerability
2022-05-24 16:57:07
ubuntucve
ubuntucve
CVE-2019-16685
2019-09-27 00:00:00
prion
prion
Cross site scripting
2019-09-27 20:15:00
nvd
nvd
CVE-2019-16685
2019-09-27 20:15:10
cve
cve
CVE-2019-16685
2019-09-27 20:15:10
openvas
openvas
Dolibarr <= 9.0.5 Multiple Vulnerabilities
2019-12-09 00:00:00