Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:5328
HistoryOct 25, 2017 - 5:15 a.m.

SQL Injection

2017-10-2505:15:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2

0.001 Low

EPSS

Percentile

39.3%

Dolibarr is vulnerable to multiple SQL injection attacks. The search_country, search_type_thirdparty, viewstatut, viewstatut, search_sale, and search_user user-supplied values are not escaped before being placed into an SQL statement.

CPENameOperatorVersion
dolibarr/dolibarrle5.0.4

0.001 Low

EPSS

Percentile

39.3%