3 matches found
CVE-2019-16688
Dolibarr 9.0.5 has stored XSS in an Email Template section to mailstemplates.php. A user with no privileges can inject script to attack the admin. This stored XSS can affect all types of user privilege from Admin to users with no permissions...
UBUNTU-CVE-2019-16688
Dolibarr 9.0.5 has stored XSS in an Email Template section to mailstemplates.php. A user with no privileges can inject script to attack the admin. This stored XSS can affect all types of user privilege from Admin to users with no permissions...
CVE-2019-16688
Dolibarr 9.0.5 is affected by a stored XSS in the Email Template section (mails_templates.php). A user with no privileges can inject script to attack the admin, with impact across privilege levels as described. No patch/fix details are provided in the connected documents.