Lucene search
PRIOn knowledge basePRION:CVE-2017-9838HistoryApr 11, 2018 - 3:29 a.m.
Cross site scripting
2018-04-1103:29:00
PRIOn knowledge base
www.prio-n.com
3
Dolibarr ERP/CRM is affected by multiple reflected Cross-Site Scripting (XSS) vulnerabilities in versions before 5.0.4: index.php (leftmenu parameter), core/ajax/box.php (PATH_INFO), product/stats/card.php (type parameter), holiday/list.php (month_create, month_start, and month_end parameters), and don/card.php (societe, lastname, firstname, address, zipcode, town, and email parameters).
| CPE | Name | Operator | Version |
|---|---|---|---|
| dolibarr_erp\\/crm | lt | 5.0.4 |
Related
nvd
nvd
CVE-2017-9838
2018-04-11 03:29:00
ubuntucve
ubuntucve
CVE-2017-9838
2018-04-11 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2017-10-25 05:29:28
osv
osv
CVE-2017-9838
2018-04-11 03:29:00
Dolibarr Cross-Site Scripting (XSS) vulnerability
2022-05-14 03:23:30
cvelist
cvelist
CVE-2017-9838
2018-04-11 03:00:00
cve
cve
CVE-2017-9838
2018-04-11 03:29:00
github
github
Dolibarr Cross-Site Scripting (XSS) vulnerability
2022-05-14 03:23:30
openvas
openvas
Dolibarr <= 5.0.3 Multiple Vulnerabilities
2018-04-11 00:00:00