5 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-17897
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id...
Dolibarr < 6.0.5 Multiple Vulnerabilities
Dolibarr is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:dolibarr:dolibarr"; if description...
CVE-2017-17897
SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2017-17897
SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2017-17897
Dolibarr ERP/CRM 6.0.4 is affected by a SQL injection in comm/multiprix.php via the id parameter, allowing remote attackers to run arbitrary SQL. Affected component: Dolibarr’s multiprix module; root cause: unparameterized SQL built with user-supplied id. Exploitation: remote, no authentication r...