Vulnerabilities > Dolibarr

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-27	CVE-2019-16688	Cross-site Scripting vulnerability in Dolibarr Erp/Crm 9.0.5 Dolibarr 9.0.5 has stored XSS in an Email Template section to mails_templates.php. network low complexity dolibarr CWE-79	5.4
2019-09-27	CVE-2019-16687	Cross-site Scripting vulnerability in Dolibarr Erp/Crm 9.0.5 Dolibarr 9.0.5 has stored XSS in a User Profile in a Signature section to card.php. network low complexity dolibarr CWE-79	5.4
2019-09-27	CVE-2019-16686	Cross-site Scripting vulnerability in Dolibarr Erp/Crm 9.0.5 Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. network low complexity dolibarr CWE-79	5.4
2019-09-27	CVE-2019-16685	Cross-site Scripting vulnerability in Dolibarr Erp/Crm 9.0.5 Dolibarr 9.0.5 has stored XSS vulnerability via a User Group Description section to card.php. network low complexity dolibarr CWE-79	5.4
2019-09-16	CVE-2019-16197	Cross-site Scripting vulnerability in Dolibarr Erp/Crm 10.0.1 In htdocs/societe/card.php in Dolibarr 10.0.1, the value of the User-Agent HTTP header is copied into the HTML document as plain text between tags, leading to XSS. network low complexity dolibarr CWE-79	6.1
2019-08-14	CVE-2019-15062	Cross-Site Request Forgery (CSRF) vulnerability in Dolibarr Erp/Crm 11.0.0 An issue was discovered in Dolibarr 11.0.0-alpha. network low complexity dolibarr CWE-352	8.0
2019-07-29	CVE-2019-11201	Code Injection vulnerability in Dolibarr Erp/Crm 9.0.1 Dolibarr ERP/CRM 9.0.1 provides a module named website that provides for creation of public websites with a WYSIWYG editor. network low complexity dolibarr CWE-94	8.0
2019-07-29	CVE-2019-11200	Unspecified vulnerability in Dolibarr Erp/Crm 9.0.1 Dolibarr ERP/CRM 9.0.1 provides a web-based functionality that backs up the database content to a dump file. network low complexity dolibarr	8.8
2019-07-29	CVE-2019-11199	Cross-site Scripting vulnerability in Dolibarr Erp/Crm 9.0.1 Dolibarr ERP/CRM 9.0.1 was affected by stored XSS within uploaded files. network low complexity dolibarr CWE-79	5.4
2019-07-18	CVE-2019-1010054	Cross-Site Request Forgery (CSRF) vulnerability in Dolibarr Erp/Crm 7.0.0 Dolibarr 7.0.0 is affected by: Cross Site Request Forgery (CSRF). network low complexity dolibarr CWE-352	8.8

Vulnerabilities > Dolibarr {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dolibarr"}]}

Vulnerabilities > Dolibarr