PT-2019-9960 · Dolibarr · Dolibarr
Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A stored cross-site scripting issue allows remote authenticated users to inject arbitrary web script or HTML via the address or town parameter to the "user/card.php" endpoint. Recommendations: For Dolibarr...