2 matches found
CVE-2020-9016
Dolibarr 11.0 allows XSS via the joinfiles, topic, or code parameter, or the HTTP Referer header...
CVE-2020-9016
Dolibarr 11.0 is affected by a Cross‑Site Scripting (XSS) vulnerability that can be triggered via the joinfiles, topic, or code parameters, or the HTTP Referer header. The issue is documented across multiple sources (NVD/NVDBOSV family and related advisories) with the root cause described as XSS ...