Vulnerabilities > Dolibarr > Dolibarr ERP CRM > 6.0.2

DATE CVE VULNERABILITY TITLE RISK
2018-04-11 CVE-2017-18259 Cross-site Scripting vulnerability in Dolibarr Erp/Crm
Dolibarr ERP/CRM is affected by stored Cross-Site Scripting (XSS) in versions through 7.0.0.
network
low complexity
dolibarr CWE-79
5.4
2018-02-09 CVE-2017-1000509 Cross-site Scripting vulnerability in Dolibarr Erp/Crm 6.0.2
Dolibarr version 6.0.2 contains a Cross Site Scripting (XSS) vulnerability in Product details that can result in execution of javascript code.
network
low complexity
dolibarr CWE-79
5.4