Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2016-9997

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/pucestatut.php involving the $id parameter, as demonstrated by a...

6.1CVSS6AI score0.00933EPSS
Exploits0References2
OSV
OSV
added 2022/05/17 1:5 a.m.16 views

GHSA-JJGQ-JQ8G-24W4 Dolibarr SQL injection vulnerability in don/list.php

SQL injection vulnerability in don/list.php in Dolibarr version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS9.9AI score0.01307EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/14 3:8 a.m.22 views

Dolibarr SQL injection vulnerability in product/card.php

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS9AI score0.01937EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/07/09 12:0 a.m.2 views

Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-13460)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php...

9.8CVSS9.8AI score0.01937EPSS
Exploits0References1
Prion
Prion
added 2018/07/08 4:29 p.m.15 views

Sql injection

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

7.5CVSS9.9AI score0.01937EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/07/08 4:29 p.m.4 views

UBUNTU-CVE-2018-13447

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS7.7AI score0.01937EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/07/08 4:29 p.m.17 views

CVE-2018-13447

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS7.5AI score0.01937EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/07/08 12:0 a.m.3 views

PT-2018-11830 · Dolibarr · Dolibarr Erp/Crm

Name of the Vulnerable Software and Affected Versions: Dolibarr ERP/CRM version 7.0.3 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the statut parameter in the product/card.php file. Recommendations: For Dolibarr ERP/CRM version 7.0.3, avoi...

9.8CVSS9.7AI score0.01937EPSS
Exploits0References8
OSV
OSV
added 2018/04/11 3:29 a.m.3 views

UBUNTU-CVE-2017-18260

Dolibarr ERP/CRM is affected by multiple SQL injection vulnerabilities in versions through 7.0.0 via comm/propal/list.php viewstatut parameter or comm/propal/list.php propalstatut parameter, aka searchstatut parameter...

8.8CVSS7.4AI score0.01054EPSS
Exploits1References3
CNVD
CNVD
added 2017/09/12 12:0 a.m.4 views

Dolibarr ERP/CRM on/list.php File SQL Injection Vulnerability

Dolibarr ERP/CRM is an open source software/freeware for small and medium-sized businesses, organizations or freelancers. It includes different features such as Enterprise Resource Planning ERP and Customer Relationship Management CRM, as well as applications for other different activities. A SQL...

9.8CVSS9.9AI score0.01307EPSS
Exploits0References1
OSV
OSV
added 2017/09/11 9:29 a.m.4 views

UBUNTU-CVE-2017-14242

SQL injection vulnerability in don/list.php in Dolibarr version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS7.7AI score0.01307EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/09/11 9:29 a.m.39 views

CVE-2017-14242

SQL injection vulnerability in don/list.php in Dolibarr version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS7.5AI score0.01307EPSS
Exploits0References1
OSV
OSV
added 2017/09/11 9:29 a.m.15 views

CVE-2017-14242

SQL injection vulnerability in don/list.php in Dolibarr version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS8.7AI score
Exploits0References1
OSV
OSV
added 2017/06/05 2:29 p.m.8 views

UBUNTU-CVE-2017-9435

Dolibarr ERP/CRM before 5.0.3 is vulnerable to a SQL injection in user/index.php searchsupervisor and searchstatut parameters...

9.8CVSS5.9AI score0.01478EPSS
Exploits0References4
CNVD
CNVD
added 2016/12/20 12:0 a.m.4 views

SPIP cross-site scripting vulnerability (CNVD-2016-13015)

SPIP is a free Web-based content publishing system. The system is primarily used for online collaboration. A cross-site scripting vulnerability exists in the /ecrire/exec/pucestatut.php file in SPIP 3.1.x. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML wit...

6.1CVSS6AI score0.00933EPSS
Exploits0References1
OSV
OSV
added 2016/12/17 3:59 a.m.4 views

DEBIAN-CVE-2016-9997

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/pucestatut.php involving the $id parameter, as demonstrated by a /ecrire/?exec=pucestatut URL...

6.1CVSS6.4AI score0.00933EPSS
Exploits0References1
OSV
OSV
added 2016/12/17 3:59 a.m.4 views

UBUNTU-CVE-2016-9997

SPIP 3.1.x suffers from a Reflected Cross Site Scripting Vulnerability in /ecrire/exec/pucestatut.php involving the $id parameter, as demonstrated by a /ecrire/?exec=pucestatut URL...

6.1CVSS6.4AI score0.00933EPSS
Exploits0References3
Rows per page
Query Builder