CVE-2018-19995
CVE-2018-19995 corresponds to a stored XSS vulnerability in Dolibarr 8.0.2. The issue allows remote authenticated users to inject arbitrary web script or HTML via the address or town fields (POST) sent to user/card.php. Affected product/version: Dolibarr 8.0.2. Root cause/impact: stored XSS that ...