2 matches found
CVE-2013-2092
CVE-2013-2092: Dolibarr ERP/CRM 3.3.1 contains a Cross‑Site Scripting (XSS) in functions.lib.php that allows remote attackers to inject arbitrary web script or HTML. Root cause is a lack of input sanitization in that library file. Impact per sources is limited to XSS on affected pages; exploitati...
CVE-2013-2092
Cross-site Scripting XSS in Dolibarr ERP/CRM 3.3.1 allows remote attackers to inject arbitrary web script or HTML in functions.lib.php...