CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Veracode•added 2019/01/04 2:58 a.m.•12 views

Cross-site Scripting (XSS)

dolibarr/dolibarr is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization of the address and town parameters, allowing XSS attacks...

5.4CVSS4.9AI score0.00132EPSS

Exploits0References2Affected Software1

Veracode•added 2019/01/04 2:48 a.m.•11 views

Cross-site Scripting (XSS)

dolibarr/dolibarr is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the lack of sanitization of the address and town parameters, allowing XSS attacks...

5.4CVSS4.9AI score0.00124EPSS

Exploits0References1Affected Software1

CNVD•added 2019/01/04 12:0 a.m.•1 views

Dolibarr cross-site scripting vulnerability (CNVD-2019-00368)

Dolibarr is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in Dolibarr version 8.0.2,...

5.4CVSS6AI score0.00124EPSS

Exploits0References1

CNVD•added 2019/01/04 12:0 a.m.•2 views

Dolibarr cross-site scripting vulnerability (CNVD-2019-00724)

5.4CVSS5.9AI score0.00132EPSS

Exploits0References1

OSV•added 2019/01/03 7:29 p.m.•2 views

UBUNTU-CVE-2018-19995

A stored cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "address" POST or "town" POST parameter to user/card.php...

5.4CVSS6.5AI score0.00132EPSS

Exploits0References4

Positive Technologies•added 2019/01/03 12:0 a.m.•1 views

PT-2019-9960 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A stored cross-site scripting issue allows remote authenticated users to inject arbitrary web script or HTML via the address or town parameter to the "user/card.php" endpoint. Recommendations: For Dolibarr...

5.4CVSS5.3AI score0.00132EPSS

Exploits0References9

Positive Technologies•added 2019/01/03 12:0 a.m.•2 views

PT-2019-9957 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A stored cross-site scripting issue allows remote authenticated users to inject arbitrary web script or HTML via the address or town parameter to "adherents/type.php" API endpoint. Recommendations: For...

5.4CVSS5.3AI score0.00124EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by