6 matches found
Dolibarr 7.0.0 Cross Site Scripting
CVE-2018-10095 Dolibarr XSS Injection vulnerability Description Dolibarr is an "Open Source ERP & CRM for Business" used by many companies worldwide. It is available through GitHub or as distribution packages e.g .deb package. Threat The application does not handle user input properly, allowing...
CVE-2018-10095
Cross-site scripting XSS vulnerability in Dolibarr before 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the foruserlogin parameter to adherents/cartes/carte.php...
CVE-2018-10095
Cross-site scripting XSS vulnerability in Dolibarr before 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the foruserlogin parameter to adherents/cartes/carte.php...
CVE-2018-10095
Cross-site scripting XSS vulnerability in Dolibarr before 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the foruserlogin parameter to adherents/cartes/carte.php...
UBUNTU-CVE-2018-10095
Cross-site scripting XSS vulnerability in Dolibarr before 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the foruserlogin parameter to adherents/cartes/carte.php...
CVE-2018-10095
Dolibarr before 7.0.2 is affected by CVE-2018-10095: an XSS vulnerability in the foruserlogin parameter to adherents/cartes/carte.php, allowing remote attackers to inject arbitrary script/HTML in the victim’s browser. The issue is caused by improper input handling in this endpoint. Impact stateme...