Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Snyk
Snykadded 2025/07/21 7:29 p.m.1 views

PHP Remote File Inclusion

Overview dolibarr/dolibarr is a modern and easy to use web software to manage your business. Affected versions of this package are vulnerable to PHP Remote File Inclusion in the perms process of menu creation and editing, where user-supplied input is evaluated without sufficient filtering of...

8.8CVSS7.6AI score
Exploits0References2
OSV
OSVadded 2025/07/21 7:29 p.m.2 views

GHSA-49XW-HW94-FMV2 Dolibarr has Remote Code Execution Vulnerability (Bypass)

Summary The Dolibarr backend provides the function of adding Menu, and supports setting permissions for the added Menu: This is the trigger point of the vulnerability. The submitted permission can be php code, and it will be executed when viewing the created Menu: - htdocs/admin/menus/edit.php As...

8.8CVSS8.8AI score
Exploits0References4
Github Security Blog
Github Security Blogadded 2025/07/21 7:29 p.m.5 views

Dolibarr has Remote Code Execution Vulnerability (Bypass)

Summary The Dolibarr backend provides the function of adding Menu, and supports setting permissions for the added Menu: This is the trigger point of the vulnerability. The submitted permission can be php code, and it will be executed when viewing the created Menu: - htdocs/admin/menus/edit.php As...

8.8AI score
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2025/07/21 12:0 a.m.5 views

PT-2025-31592 · Packagist · Dolibarr/Dolibarr

Summary The Dolibarr backend provides the function of adding Menu, and supports setting permissions for the added Menu: This is the trigger point of the vulnerability. The submitted permission can be php code, and it will be executed when viewing the created Menu: - htdocs/admin/menus/edit.php As...

8.8CVSS8.8AI score
Exploits0References5
Microsoft KB
Microsoft KBadded 2018/08/14 7:0 a.m.307 views

Description of the security update for SharePoint Enterprise Server 2016: August 14, 2018

Description of the security update for SharePoint Enterprise Server 2016: August 14, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow information disclosure if a user opens a specially crafted Office file. To learn more about these vulnerabilities, s...

5.5CVSS6.4AI score0.328EPSS
Exploits0
Drupal
Drupaladded 2008/09/24 12:0 a.m.9 views

SA-2008-055 - Stock - Cross site scripting

The stock module provides the ability to query price quotes and trading volumes from various stock markets. An oversight in the menu permissions code allows any user to change the text of the heading at the top of the stock quotes page. As this text is not escaped, it is safe only for an...

6AI score
Exploits0References5
Rows per page
Query Builder