Vulnerabilities > Dolibarr > Dolibarr ERP CRM > 10.0.2

DATE CVE VULNERABILITY TITLE RISK
2019-10-15 CVE-2019-17223 Cross-site Scripting vulnerability in Dolibarr Erp/Crm 10.0.2
There is HTML Injection in the Note field in Dolibarr ERP/CRM 10.0.2 via user/note.php.
network
low complexity
dolibarr CWE-79
6.1
6.1