CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Github Security Blog•added 2022/05/14 1:42 a.m.•13 views

Dolibarr reflected cross-site scripting (XSS) vulnerability

A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...

6.1CVSS5.8AI score0.00171EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2020/06/19 12:0 a.m.•1 views

PT-2020-14027 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr versions 11.0.4 and below Dolibarr version 11.0.3 Description: A reflected cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML into "public/notice.php" related to transphrase and transkey...

6.1CVSS5.8AI score0.00259EPSS

Exploits0References6

Veracode•added 2019/01/04 6:11 a.m.•15 views

Cross-Site Scripting (XSS)

dolibarr is vulnerable to cross-site scripting XSS. A remote attacker is able to inject arbitrary Javascript into a victim's browser via the transphrase parameter in notice.php due to the application not performing output encoding before displaying on the user's browser...

6.1CVSS5.9AI score0.00171EPSS

Exploits0References1Affected Software1

UbuntuCve•added 2019/01/03 7:29 p.m.•12 views

CVE-2018-19993

A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...

6.1CVSS6.8AI score0.00171EPSS

Exploits0References2

OSV•added 2019/01/03 7:29 p.m.•1 views

UBUNTU-CVE-2018-19993

A reflected cross-site scripting XSS vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php...

6.1CVSS6.8AI score0.00171EPSS

Exploits0References3

Positive Technologies•added 2019/01/03 12:0 a.m.•2 views

PT-2019-9958 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A reflected cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to the "public/notice.php" endpoint. Recommendations: For Dolibarr version...

6.1CVSS6.1AI score0.00171EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by