Описание
In Dolibarr 10.0.6, if USER_LOGIN_FAILED is active, there is a stored XSS vulnerability on the admin tools --> audit page. This may lead to stealing of the admin account.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dolibarr | removed | package |
EPSS
Процентиль: 54%
0.00313
Низкий
Связанные уязвимости
CVSS3: 5.4
ubuntu
почти 6 лет назад
In Dolibarr 10.0.6, if USER_LOGIN_FAILED is active, there is a stored XSS vulnerability on the admin tools --> audit page. This may lead to stealing of the admin account.
CVSS3: 5.4
nvd
почти 6 лет назад
In Dolibarr 10.0.6, if USER_LOGIN_FAILED is active, there is a stored XSS vulnerability on the admin tools --> audit page. This may lead to stealing of the admin account.
CVSS3: 5.4
github
больше 3 лет назад
Dolibarr stored Cross-site Scripting vulnerability
EPSS
Процентиль: 54%
0.00313
Низкий