CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

NVD•added 2019/11/20 8:15 p.m.•15 views

CVE-2013-2091

SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php...

9.8CVSS10AI score0.00737EPSS

Exploits0References4

UbuntuCve•added 2019/11/20 8:15 p.m.•24 views

CVE-2013-2091

SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php...

9.8CVSS7.5AI score0.00737EPSS

Exploits0References1

OSV•added 2019/11/20 8:15 p.m.•0 views

UBUNTU-CVE-2013-2091

SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php...

9.8CVSS7.7AI score0.00737EPSS

Exploits0References2

Prion•added 2019/11/20 8:15 p.m.•16 views

Sql injection

SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php...

7.5CVSS9AI score0.00737EPSS

Exploits0References4Affected Software1

Cvelist•added 2019/11/20 7:52 p.m.•16 views

CVE-2013-2091

SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php...

10AI score0.00737EPSS

Exploits0References4

NVD•added 2014/07/11 2:55 p.m.•10 views

CVE-2014-3992

Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow remote authenticated users to execute arbitrary SQL commands via the 1 entity parameter in an update action to user/fiche.php or 2 sortorder parameter to user/group/index.php...

6.5CVSS8.1AI score0.02118EPSS

Exploits3References1

Cvelist•added 2014/07/11 2:0 p.m.•12 views

CVE-2014-3991

Multiple cross-site scripting XSS vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow remote attackers to inject arbitrary web script or HTML via the 1 dolusejmobile, 2 doloptimizesmallscreen, 3 dolnomousehover, 4 dolhidetopmenu, 5 dolhideleftmenu, 6 mainmenu, or 7 leftmenu parameter to index.php; th...

5.8AI score0.00632EPSS

Exploits1References1

NVD•added 2012/02/21 1:31 p.m.•7 views

CVE-2012-1225

Multiple SQL injection vulnerabilities in Dolibarr CMS 3.2.0 Alpha and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 memberslist parameter aka Member List in list.php or 2 rowid parameter to adherents/fiche.php...

7.5CVSS8.1AI score0.00783EPSS

Exploits1References4

Prion•added 2012/02/21 1:31 p.m.•5 views

Sql injection

7.5CVSS8.8AI score0.00783EPSS

Exploits1References4Affected Software1

Prion•added 2012/02/21 1:31 p.m.•7 views

Directory traversal

Multiple directory traversal vulnerabilities in Dolibarr CMS 3.2.0 Alpha allow remote attackers to read arbitrary files and possibly execute arbitrary code via a .. dot dot in the 1 file parameter to document.php or 2 backtopage parameter in a create action to comm/action/fiche.php...

7.5CVSS8.2AI score0.03563EPSS

Exploits1References7Affected Software1

UbuntuCve•added 2012/02/21 1:31 p.m.•12 views

CVE-2012-1225

7.5CVSS6.2AI score0.00783EPSS

Exploits1References1

Cvelist•added 2012/02/21 12:0 a.m.•13 views

CVE-2012-1225

8.1AI score0.00783EPSS

Exploits1References4

Prion•added 2011/12/14 12:55 a.m.•11 views

Sql injection

Multiple SQL injection vulnerabilities in Dolibarr 3.1.0 RC and probably earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 sortfield, 2 sortorder, and 3 sall parameters to user/index.php and b user/group/index.php; the id parameter to 4 info.php, 5 perms.php, 6...

6.5CVSS8.8AI score0.02646EPSS

Exploits1References15Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by