Описание
SQL injection vulnerability in user/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the employee parameter.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dolibarr | removed | package |
Примечания
https://github.com/Dolibarr/dolibarr/commit/2b088a73c121a52e006c0d76ea4da7ffeb7b4f4a
https://github.com/Dolibarr/dolibarr/commit/bacd5110fbdc81a35030fdc322775fa15ea85924
EPSS
Процентиль: 49%
0.00258
Низкий
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 7 лет назад
SQL injection vulnerability in user/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the employee parameter.
CVSS3: 8.8
nvd
около 7 лет назад
SQL injection vulnerability in user/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the employee parameter.
CVSS3: 8.8
github
больше 3 лет назад
Dolibarr SQL injection vulnerability in user/card.php
EPSS
Процентиль: 49%
0.00258
Низкий