7 matches found
EUVD-2022-2953
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-19992
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stored cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the address POST ...
CVE-2018-19993
A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...
CVE-2018-19995
A stored cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "address" POST or "town" POST parameter to user/card.php...
CVE-2018-19992
A stored cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "address" POST or "town" POST parameter to adherents/type.php...
Cross site scripting
A stored cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "address" POST or "town" POST parameter to user/card.php...
PT-2019-9958 · Dolibarr · Dolibarr
Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A reflected cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to the "public/notice.php" endpoint. Recommendations: For Dolibarr version...