Lucene search
K

16 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.6 views

Malicious code in lyst-product-card-generator (npm)

The package lyst-product-card-generator was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/08 4:48 a.m.3 views

Malicious code in product_card_grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7cff91597e126b61f1bb6911119a35d329959dadbfee0c086ccd4c7d79bf2ca7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/08/31 12:0 a.m.3 views

PT-2020-13709 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 11.0.4 Description: The issue concerns multiple stored Cross-Site Scripting XSS vulnerabilities. These could allow remote authenticated attackers to inject arbitrary web script or HTML. This can be done via several API...

5.4CVSS5.2AI score0.00832EPSS
Exploits0References9
CNVD
CNVD
added 2019/01/04 12:0 a.m.2 views

Dolibarr SQL Injection Vulnerability (CNVD-2019-00361)

Dolibarr is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php file in...

8.8CVSS8.6AI score0.02032EPSS
Exploits0References1
OSV
OSV
added 2019/01/03 7:29 p.m.5 views

UBUNTU-CVE-2018-19994

An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the desiredstock parameter...

8.8CVSS7.7AI score0.02032EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2019/01/03 12:0 a.m.5 views

PT-2019-9959 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: The issue is related to an error-based SQL injection, allowing remote authenticated users to execute arbitrary SQL commands. This is achieved by manipulating the desiredstock parameter in the product/card.p...

8.8CVSS8.7AI score0.02032EPSS
Exploits0References8
Veracode
Veracode
added 2018/07/09 4:7 a.m.11 views

SQL Injection

dolibarr/dolibarr is vulnerable to SQL Injection attacks. The application does not properly sanitize the countryid parameter in product/card.php, allowing a malicious user to inject and execute arbitrary SQL commands...

9.8CVSS9.9AI score0.01918EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/07/09 12:0 a.m.6 views

Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-13453)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php...

9.8CVSS9.8AI score0.01918EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/09 12:0 a.m.3 views

Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-13454)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php...

9.8CVSS9.8AI score0.01918EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/09 12:0 a.m.2 views

Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-13460)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php...

9.8CVSS9.8AI score0.01937EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/09 12:0 a.m.2 views

Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-13459)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A SQL injection vulnerability exists in the product/card.php...

9.8CVSS9.8AI score0.01918EPSS
Exploits0References1
OSV
OSV
added 2018/07/08 4:29 p.m.4 views

UBUNTU-CVE-2018-13448

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the countryid parameter...

9.8CVSS7.7AI score0.01918EPSS
Exploits0References2
OSV
OSV
added 2018/07/08 4:29 p.m.6 views

UBUNTU-CVE-2018-13449

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statutbuy parameter...

9.8CVSS7.7AI score0.01918EPSS
Exploits0References2
OSV
OSV
added 2018/07/08 4:29 p.m.4 views

UBUNTU-CVE-2018-13447

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

9.8CVSS7.7AI score0.01937EPSS
Exploits0References2
OSV
OSV
added 2018/07/08 4:29 p.m.8 views

UBUNTU-CVE-2018-13450

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statusbatch parameter...

9.8CVSS7.7AI score0.01918EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2018/07/08 12:0 a.m.3 views

PT-2018-11830 · Dolibarr · Dolibarr Erp/Crm

Name of the Vulnerable Software and Affected Versions: Dolibarr ERP/CRM version 7.0.3 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the statut parameter in the product/card.php file. Recommendations: For Dolibarr ERP/CRM version 7.0.3, avoi...

9.8CVSS9.7AI score0.01937EPSS
Exploits0References8
Rows per page
Query Builder