Security Advisories - dolibarr/dolibarr - Packagist

dolibarr/dolibarr Security Advisories for 14.0.1 (12)

Dolibarr allows a remote privileged attacker to execute arbitrary code via a crafted command/script

CVE-2023-38886

Affected version: <17.0.1

Reported by:
GitHub
File Upload vulnerability in Dolibarr ERP CRM

CVE-2023-38887

Affected version: <17.0.1

Reported by:
GitHub
Cross Site Scripting vulnerability in Dolibarr ERP CRM

CVE-2023-38888

Affected version: <17.0.1

Reported by:
GitHub
Dolibarr vulnerable to remote code execution via uppercase manipulation

CVE-2023-30253

Affected version: <17.0.1

Reported by:
GitHub
Dolibarr vulnerable to Eval Injection

CVE-2022-40871

Affected version: <=15.0.3

Reported by:
GitHub
Cross site scripting in dolibarr

CVE-2022-2060

Affected version: <16.0

Reported by:
GitHub
Code injection in dolibarr/dolibarr

CVE-2022-0819

Affected version: <15.0.1

Reported by:
GitHub
Logic error in dolibarr/dolibarr

CVE-2022-0746

Affected version: <16.0

Reported by:
GitHub
Improper Authorization in dolibarr/dolibarr

CVE-2022-0731

Affected version: <16.0

Reported by:
GitHub
Dolibarr vulnerable to Improper Validation of Specified Quantity in Input

CVE-2022-0414

Affected version: <=14.0.5

Reported by:
GitHub
SQL Injection in dolibarr

CVE-2022-0224

Affected version: <=14.0.5

Reported by:
GitHub
Logic error in dolibarr

CVE-2022-0174

Affected version: <15.0.0

Reported by:
GitHub