Lucene search
Veracode Vulnerability DatabaseVERACODE:26538HistoryAug 31, 2020 - 11:51 p.m.
Cross-Site Scripting (XSS)
2020-08-3123:51:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross-site scripting
xss
dolibarr
vulnerability
javascript
parameters
EPSS
0.001
Percentile
29.2%
dolibarr/dolibarr is vulnerable to cross-site scripting (XSS). An attacker is able to inject and execute arbitrary Javascript in a user’s browser via the label, name_alias, customcode, subject, societe, address, message and barcode parameters. A malicious payload such as `` will cause the browser to render the base-64 encoded Javascript.
Related
nvd
nvd
CVE-2020-13828
2020-08-31 16:15:14
prion
prion
Cross site scripting
2020-08-31 16:15:00
cvelist
cvelist
CVE-2020-13828
2020-08-31 15:14:03
cve
cve
CVE-2020-13828
2020-08-31 16:15:14
github
github
Dolibarr stored Cross-Site Scripting (XSS) vulnerability
2022-05-24 17:26:59
ubuntucve
ubuntucve
CVE-2020-13828
2020-08-31 00:00:00
osv
osv
Dolibarr stored Cross-Site Scripting (XSS) vulnerability
2022-05-24 17:26:59
CVE-2020-13828
2020-08-31 16:15:14