Lucene search
+L

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-4732

Malware in sbrugna...

4.3CVSS6.3AI score0.05733EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-4720

Malware in sbrugna...

6.5CVSS6.4AI score0.05666EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2012/04/13 12:0 a.m.30 views

Dolibarr 3.1.0 admin/company.php username Parameter XSS

The version of Dolibarr on the remote host fails to properly sanitize parameters in 'admin/company.php' before using them to generate dynamic HTML. By tricking someone into clicking on a specially crafted link, an attacker may be able exploit this issue to inject arbitrary HTML and script code in...

4.3CVSS5.8AI score0.02234EPSS
Exploits0References3
Prion
Prion
added 2011/12/14 12:55 a.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in Dolibarr 3.1.0 RC and probably earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 sortfield, 2 sortorder, and 3 sall parameters to user/index.php and b user/group/index.php; the id parameter to 4 info.php, 5 perms.php, 6...

6.5CVSS8.8AI score0.05666EPSS
Exploits1References15Affected Software1
Positive Technologies
Positive Technologies
added 2011/12/14 12:0 a.m.11 views

PT-2011-5108 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr versions 3.1.0 RC and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands. This can be achieved via several parameters in different PHP files, including sortfield, sortorder, and sall...

6.5CVSS7.8AI score0.05666EPSS
Exploits1References19
CVE
CVE
added 2011/12/14 12:0 a.m.40 views

CVE-2011-4802

Dolibarr

6.5CVSS8.3AI score0.05666EPSS
Exploits1References15Affected Software1
CVE
CVE
added 2011/12/14 12:0 a.m.34 views

CVE-2011-4814

Dolibarr

4.3CVSS5.8AI score0.05733EPSS
Exploits1References8Affected Software1
Prion
Prion
added 2011/11/28 11:55 a.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Dolibarr 3.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the username parameter in a setup action to admin/company.php, or the PATHINFO to 2 admin/securityother.php, 3 admin/events.php, or 4 admin/user.php...

4.3CVSS6AI score0.02234EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2011/11/28 11:0 a.m.28 views

CVE-2011-4329

Multiple cross-site scripting XSS vulnerabilities in Dolibarr 3.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the username parameter in a setup action to admin/company.php, or the PATHINFO to 2 admin/securityother.php, 3 admin/events.php, or 4 admin/user.php...

5.7AI score0.02234EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2011/11/28 12:0 a.m.8 views

PT-2011-4932 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 3.1.0 Description: The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the username parameter in a setup action to "admin/company.php", or the PATH INFO to "admin/security...

4.3CVSS6.5AI score0.02234EPSS
Exploits0References6
securityvulns
securityvulns
added 2011/11/11 12:0 a.m.54 views

Multiple Cross-Site-Scripting vulnerabilities in Dolibarr 3.1.0

Advisory: Multiple Cross-Site-Scripting vulnerabilities in Dolibarr 3.1.0 Advisory ID: INFOSERVE-ADV2011-03 Author: Stefan Schurtz Contact: [email protected] Affected Software: Successfully tested on Dolibarr 3.1.0 other versions may also be affected Vendor URL: http://www.dolibarr.org/ Vendo...

6.2AI score
Exploits0
Rows per page
Query Builder