dolibarr/dolibarr is vulnerable to cross-site scripting (XSS). The vulnerability exists as it was possible to store XSS payloads in the value of $note
in user/note.php
. This CVE ID is likely to be the same as CVE-2019-16686.
CPE | Name | Operator | Version |
---|---|---|---|
dolibarr/dolibarr | le | 10.0.2 | |
dolibarr/dolibarr | le | 10.0.2 |