Lucene search
Veracode Vulnerability DatabaseVERACODE:21709HistoryOct 16, 2019 - 4:48 a.m.
Cross-Site Scripting (XSS)
2019-10-1604:48:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
36.3%
dolibarr/dolibarr is vulnerable to cross-site scripting (XSS). The vulnerability exists as it was possible to store XSS payloads in the value of $note in user/note.php. This CVE ID is likely to be the same as CVE-2019-16686.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dolibarr/dolibarr | le | 10.0.2 | |
| dolibarr/dolibarr | le | 10.0.2 |
Related
veracode
veracode
Cross-Site Scripting (XSS)
2019-10-01 04:25:58
cvelist
cvelist
CVE-2019-17223
2019-10-15 11:59:29
CVE-2019-16686
2019-09-27 19:09:00
osv
osv
Dolibarr Cross-site Scripting in a User Note section
2022-05-24 16:57:07
Dolibarr ERP and CRM HTML Injection
2022-05-24 16:58:56
CVE-2019-17223
2019-10-15 12:15:10
nvd
nvd
CVE-2019-16686
2019-09-27 20:15:10
CVE-2019-17223
2019-10-15 12:15:10
ubuntucve
ubuntucve
CVE-2019-16686
2019-09-27 00:00:00
CVE-2019-17223
2019-10-15 00:00:00
cve
cve
CVE-2019-16686
2019-09-27 20:15:10
CVE-2019-17223
2019-10-15 12:15:10
prion
prion
Cross site scripting
2019-09-27 20:15:00
Design/Logic Flaw
2019-10-15 12:15:00
github
github
Dolibarr ERP and CRM HTML Injection
2022-05-24 16:58:56
Dolibarr Cross-site Scripting in a User Note section
2022-05-24 16:57:07
openvas
openvas
Dolibarr <= 9.0.5 Multiple Vulnerabilities
2019-12-09 00:00:00
Dolibarr <= 10.0.2 Multiple Vulnerabilities
2019-12-09 00:00:00