GHSA-M5RG-G6F9-8WPW Dolibarr SQL injection vulnerability in product/card.php

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the countryid parameter...

Dolibarr SQL injection vulnerability in product/card.php

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the countryid parameter...

Dolibarr SQL injection vulnerability in product/card.php

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter...

Dolibarr SQL injection vulnerability in product/card.php

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statusbatch parameter...

GHSA-G5MQ-V9HF-958H Dolibarr SQL injection vulnerability in product/card.php

SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statutbuy parameter...

GHSA-78HJ-952Q-99RW Dolibarr error-based SQL injection vulnerability in product/card.php

An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the desiredstock parameter...

Dolibarr error-based SQL injection vulnerability in product/card.php

An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the desiredstock parameter...

CVE-2020-13828

Dolibarr 11.0.4 is affected by multiple stored Cross-Site Scripting XSS vulnerabilities that could allow remote authenticated attackers to inject arbitrary web script or HTML via ticket/card.php?action=create with the subject, message, or address parameter; adherents/card.php with the societe or...

SQL Injection

dolibarr/dolibarr is vulnerable to SQL injection. A lack of validation on the desiredstock parameter in product/card.php allows a remote authenticated attacker to execute arbitrary SQL commands via an error-based SQL injection vulnerability. This vulnerability could potentially allow for remote...

SQL Injection

Dolibarr ERP/CRM is vulnerable to SQL injection attacks. An attacker is able to execute arbitrary SQL commands via the statutbuy in parameter in product/card.php...

SQL Injection

dolibarr/dolibarr is vulnerable to SQL Injection attacks. The application does not properly sanitize the statusbatch parameter in product/card.php, allowing a malicious user to inject and execute arbitrary SQL commands...

SQL Injection

dolibarr/dolibarr is vulnerable to SQL Injection attacks. The application does not properly sanitize the statutbuy parameter in product/card.php, allowing a malicious user to inject and execute arbitrary SQL commands...

SQL Injection

dolibarr/dolibarr is vulnerable to SQL Injection attacks. The application does not properly sanitize the statut parameter in product/card.php, allowing a malicious user to inject and execute arbitrary SQL commands...