13.0.4

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-15	CVE-2021-42220	Cross-site Scripting vulnerability in Dolibarr A Cross Site Scripting (XSS) vulnerability exists in Dolibarr before 14.0.3 via the ticket creation flow. network dolibarr CWE-79	3.5
2021-08-09	CVE-2021-25954	Incorrect Authorization vulnerability in Dolibarr In “Dolibarr” application, 2.8.1 to 13.0.4 don’t restrict or incorrectly restricts access to a resource from an unauthorized actor. network low complexity dolibarr CWE-863	4.3