Lucene search
K

2263 matches found

Vulnrichment
Vulnrichment
added 2026/05/27 12:0 a.m.8 views

CVE-2026-37711

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/actionsaddupdatedelete.inc.php...

6.2AI score0.00384EPSS
Exploits0References2
CVE
CVE
added 2026/05/27 12:0 a.m.23 views

CVE-2026-37712

Dolibarr ERP/CRM is affected by CVE-2026-37712 across versions 22.0.0–22.0.4 and 24.0.0-alpha. The issue allows a remote attacker to execute arbitrary code via htdocs/cron/class/cronjob.class.php, leveraging call_user_func_array() in the cron “job type” path. Affected component is the cron job im...

7.3CVSS6.2AI score0.00384EPSS
Exploits0References2
CVE
CVE
added 2026/05/27 12:0 a.m.21 views

CVE-2026-37711

Dolibarr ERP/CRM is affected in versions 22.0.0 to 22.0.4 and 24.0.0-alpha. The issue enables a remote attacker to execute arbitrary code via the file htdocs/core/actions_addupdatedelete.inc.php. This summary is based on the connected sources; no exploit details or remediation steps are provided ...

7.3CVSS6.2AI score0.00384EPSS
Exploits0References2
CVE
CVE
added 2026/05/27 12:0 a.m.23 views

CVE-2026-37713

CVE-2026-37713 affects Dolibarr ERP/CRM v.22.0.0–22.0.4 and v.24.0.0-alpha. A flaw in htdocs/core/class/commonobject.class.php allows a remote attacker to execute arbitrary code. The provided documents do not specify the root cause details, impacted modules beyond the commonobject class, or any a...

7.3CVSS6.2AI score0.00384EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.11 views

Dolibarr ERP/CRM 安全漏洞

Dolibarr ERP/CRM is a web-based enterprise resource planning ERP and customer relationship management CRM system developed by the Dolibarr Foundation in France. This system can be used to manage products, inventory, invoices, orders, etc. Versions of Dolibarr ERP/CRM from 22.0.0 to 22.0.4, as wel...

7.3CVSS6.1AI score0.00384EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.14 views

Dolibarr ERP/CRM 安全漏洞

Dolibarr ERP/CRM is a web-based enterprise resource planning ERP and customer relationship management CRM system developed by the Dolibarr Foundation in France. This system can be used to manage products, inventory, invoices, orders, etc. Versions of Dolibarr ERP/CRM from 22.0.0 to 22.0.4, as wel...

7.3CVSS6.1AI score0.00384EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.8 views

Dolibarr ERP/CRM 安全漏洞

Dolibarr ERP/CRM is a web-based enterprise resource planning ERP and customer relationship management CRM system developed by the Dolibarr Foundation in France. This system can be used to manage products, inventory, invoices, orders, etc. Versions of Dolibarr ERP/CRM from 22.0.0 to 22.0.4, as wel...

7.3CVSS6.1AI score0.00384EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/27 12:0 a.m.8 views

CVE-2026-37713

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/class/commonobject.class.php...

6.2AI score0.00384EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43999

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/cron/class/cronjob.class.php, call user func array in function job type...

6.2AI score0.00384EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43998

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/actions addupdatedelete.inc.php...

6.2AI score0.00384EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:0 a.m.8 views

CVE-2026-37711

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/actionsaddupdatedelete.inc.php...

6.2AI score0.00384EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-44000

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/class/commonobject.class.php...

6.2AI score0.00384EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:0 a.m.12 views

CVE-2026-37713

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/class/commonobject.class.php...

6.2AI score0.00384EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/27 12:0 a.m.12 views

CVE-2026-37712

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/cron/class/cronjob.class.php, calluserfuncarray in function job type...

6.2AI score0.00384EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/27 12:0 a.m.52 views

CVE-2026-37712

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/cron/class/cronjob.class.php, calluserfuncarray in function job type...

0.00384EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/27 12:0 a.m.55 views

CVE-2026-37711

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/actionsaddupdatedelete.inc.php...

0.00384EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/27 12:0 a.m.51 views

CVE-2026-37713

An issue in Dolibarr ERP/CRM v.22.0.0 through v.22.0.4 and v.24.0.0-alpha allows a remote attacker to execute arbitrary code via the htdocs/core/class/commonobject.class.php...

0.00384EPSS
Exploits0References2
NVD
NVD
added 2026/05/23 7:16 p.m.14 views

CVE-2018-25357

Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP code through the dbname parameter. Attackers can send a POST request to install/step1.php with malicious PHP code in the dbname parameter, then...

9.8CVSS0.01701EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/05/23 7:16 p.m.12 views

CVE-2018-25357

Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP code through the dbname parameter. Attackers can send a POST request to install/step1.php with malicious PHP code in the dbname parameter, then...

9.8CVSS6.7AI score0.01701EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/23 6:32 p.m.8 views

CVE-2018-25357 Dolibarr ERP CRM 7.0.3 Remote Code Execution via install/step1.php

Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP code through the dbname parameter. Attackers can send a POST request to install/step1.php with malicious PHP code in the dbname parameter, then...

9.8CVSS6.7AI score0.01701EPSS
Exploits1References4
Rows per page
Query Builder