Lucene search
Veracode Vulnerability DatabaseVERACODE:22023HistoryNov 27, 2019 - 3:19 a.m.
Cross-site Scripting (XSS)
2019-11-2703:19:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.001 Low
EPSS
Percentile
21.9%
dolibarr/dolibarr is vulnerable to cross-site scripting (XSS). The vulnerability exists as it is possible to upload a SVG with a XSS payload and cause the script to be executed when rendered in viewimage.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dolibarr/dolibarr | le | 11.0.3 | |
| dolibarr/dolibarr | le | 11.0.3 |
Related
prion
prion
Cross site scripting
2019-11-26 15:15:00
openvas
openvas
Dolibarr <= 10.0.3 Stored XSS Vulnerability
2019-12-09 00:00:00
osv
osv
CVE-2019-19206
2019-11-26 15:15:12
Dolibarr ERP and CRM contain XSS Vulnerability
2022-05-24 17:02:15
ubuntucve
ubuntucve
CVE-2019-19206
2019-11-26 00:00:00
cvelist
cvelist
CVE-2019-19206
2019-11-26 14:18:39
cve
cve
CVE-2019-19206
2019-11-26 15:15:12
github
github
Dolibarr ERP and CRM contain XSS Vulnerability
2022-05-24 17:02:15
nvd
nvd
CVE-2019-19206
2019-11-26 15:15:12