Vulnerabilities > Dolibarr > Dolibarr ERP CRM > 16.0.3

DATE CVE VULNERABILITY TITLE RISK
2023-05-29 CVE-2023-30253 OS Command Injection vulnerability in Dolibarr Erp/Crm
Dolibarr before 17.0.1 allows remote code execution by an authenticated user via an uppercase manipulation: <?PHP instead of <?php in injected data.
network
low complexity
dolibarr CWE-78
8.8