Lucene search
+L

16 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:31 a.m.9 views

CVE-2019-16685

Dolibarr 9.0.5 has stored XSS vulnerability via a User Group Description section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.4CVSS5.8AI score0.00782EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3378

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00775EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4538

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00782EPSS
Exploits1References3
OSV
OSV
added 2022/05/24 4:57 p.m.26 views

GHSA-M9Q9-4M25-23GC Dolibarr Cross-site Scripting in a User Profile in a Signature section

Dolibarr 9.0.5 has stored XSS in a User Profile in a Signature section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.4CVSS5.2AI score0.00782EPSS
Exploits1References3
NVD
NVD
added 2019/09/27 8:15 p.m.27 views

CVE-2019-16686

Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin...

5.4CVSS5.2AI score0.00775EPSS
Exploits1References1
OSV
OSV
added 2019/09/27 8:15 p.m.7 views

CVE-2019-16688

Dolibarr 9.0.5 has stored XSS in an Email Template section to mailstemplates.php. A user with no privileges can inject script to attack the admin. This stored XSS can affect all types of user privilege from Admin to users with no permissions...

5.4CVSS5.8AI score0.00775EPSS
Exploits1References1
OSV
OSV
added 2019/09/27 8:15 p.m.5 views

CVE-2019-16686

Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin...

5.4CVSS6.1AI score0.00775EPSS
Exploits1References1
NVD
NVD
added 2019/09/27 8:15 p.m.24 views

CVE-2019-16685

Dolibarr 9.0.5 has stored XSS vulnerability via a User Group Description section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.4CVSS5.2AI score0.00782EPSS
Exploits1References1
OSV
OSV
added 2019/09/27 8:15 p.m.4 views

UBUNTU-CVE-2019-16687

Dolibarr 9.0.5 has stored XSS in a User Profile in a Signature section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.4CVSS5.8AI score0.00782EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2019/09/27 8:15 p.m.20 views

CVE-2019-16686

Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin...

5.4CVSS6.1AI score0.00775EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/09/27 8:15 p.m.14 views

CVE-2019-16688

Dolibarr 9.0.5 has stored XSS in an Email Template section to mailstemplates.php. A user with no privileges can inject script to attack the admin. This stored XSS can affect all types of user privilege from Admin to users with no permissions...

5.4CVSS6.1AI score0.00775EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/09/27 8:15 p.m.21 views

CVE-2019-16685

Dolibarr 9.0.5 has stored XSS vulnerability via a User Group Description section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.4CVSS6.1AI score0.00782EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/09/27 8:15 p.m.10 views

CVE-2019-16687

Dolibarr 9.0.5 has stored XSS in a User Profile in a Signature section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.4CVSS6.1AI score0.00782EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/09/27 7:14 p.m.21 views

CVE-2019-16688

Dolibarr 9.0.5 has stored XSS in an Email Template section to mailstemplates.php. A user with no privileges can inject script to attack the admin. This stored XSS can affect all types of user privilege from Admin to users with no permissions...

5.2AI score0.00775EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/09/27 7:5 p.m.30 views

CVE-2019-16685

Dolibarr 9.0.5 has stored XSS vulnerability via a User Group Description section to card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script and can also achieve privilege escalation...

5.2AI score0.00782EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2019/09/27 12:0 a.m.5 views

PT-2019-14769 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 9.0.5 Description: The issue allows for stored XSS via the User Group Description section in card.php. A user with the "Create/modify other users, groups and permissions" privilege can inject script, potentially achieving...

5.4CVSS5.2AI score0.00782EPSS
Exploits1References7
Rows per page
Query Builder