2 matches found
Dolibarr cross-site scripting vulnerability (CNVD-2019-00724)
Dolibarr is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A cross-site scripting vulnerability exists in the user/card.php file ...
PT-2019-9961 · Dolibarr · Dolibarr
Name of the Vulnerable Software and Affected Versions: Dolibarr version 8.0.2 Description: A SQL injection issue allows remote authenticated users to execute arbitrary SQL commands via the employee parameter in the user/card.php file. Recommendations: For Dolibarr version 8.0.2, consider...