CVE-2018-19994
Dolibarr 8.0.2 is affected by an error-based SQL injection in product/card.php via the desiredstock parameter. The vulnerability allows remote authenticated users to execute arbitrary SQL commands, with impact on confidentiality, integrity, and availability as described in CVE-2018-19994 (NVD CVS...