dolibarr/dolibarr is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject arbitrary Javascript into a victim’s browser via the User-Agent
HTTP header.
CPE | Name | Operator | Version |
---|---|---|---|
dolibarr/dolibarr | le | 10.0.1 | |
dolibarr/dolibarr | le | 10.0.1 |