5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.0%
Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin.
verneet.com/cve-2019-16686
github.com/Dolibarr/dolibarr
nvd.nist.gov/vuln/detail/CVE-2019-16686