4 matches found
CVE-2020-12669
core/getmenudiv.php in Dolibarr before 11.0.4 allows remote authenticated attackers to bypass intended access restrictions via a non-alphanumeric menu parameter...
CVE-2020-12669
core/getmenudiv.php in Dolibarr before 11.0.4 allows remote authenticated attackers to bypass intended access restrictions via a non-alphanumeric menu parameter...
CVE-2020-12669
core/getmenudiv.php in Dolibarr before 11.0.4 allows remote authenticated attackers to bypass intended access restrictions via a non-alphanumeric menu parameter...
CVE-2020-12669
CVE-2020-12669 affects Dolibarr core/get_menudiv.php in Dolibarr versions before 11.0.4. The issue allows remote authenticated attackers to bypass access restrictions via a non-alphanumeric menu parameter, enabling elevation of access. Red Hat and other sources confirm the same flaw and point to ...