Описание
An issue was discovered in Dolibarr through 7.0.0. There is Stored XSS in expensereport/card.php in the expense reports plugin via the comments parameter, or a public or private note.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.8.0 (включая) до 7.0.0 (включая)
cpe:2.3:a:dolibarr:dolibarr:*:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
ubuntu
почти 7 лет назад
An issue was discovered in Dolibarr through 7.0.0. There is Stored XSS in expensereport/card.php in the expense reports plugin via the comments parameter, or a public or private note.
CVSS3: 6.1
debian
почти 7 лет назад
An issue was discovered in Dolibarr through 7.0.0. There is Stored XSS ...
CVSS3: 6.1
github
больше 3 лет назад
Dolibarr Stored Cross-site Scripting in expensereport/card.php
EPSS
Процентиль: 42%
0.00199
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79