Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-14239

Опубликовано: 11 сент. 2017
Источник: ubuntu
Приоритет: low
CVSS2: 3.5
CVSS3: 5.4

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 6.0.0 allow remote authenticated users to inject arbitrary web script or HTML via the (1) CompanyName, (2) CompanyAddress, (3) CompanyZip, (4) CompanyTown, (5) Fax, (6) EMail, (7) Web, (8) ManagingDirectors, (9) Note, (10) Capital, (11) ProfId1, (12) ProfId2, (13) ProfId3, (14) ProfId4, (15) ProfId5, or (16) ProfId6 parameter to htdocs/admin/company.php.

РелизСтатусПримечание
artful

ignored

end of life
bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-apps/xenial

needed

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needs-triage]
esm-infra/focal

DNE

focal

DNE

Показывать по

Ссылки на источники

3.5 Low

CVSS2

5.4 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-14239

CVSS3: 5.4
nvd
больше 8 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 6.0.0 allow remote authenticated users to inject arbitrary web script or HTML via the (1) CompanyName, (2) CompanyAddress, (3) CompanyZip, (4) CompanyTown, (5) Fax, (6) EMail, (7) Web, (8) ManagingDirectors, (9) Note, (10) Capital, (11) ProfId1, (12) ProfId2, (13) ProfId3, (14) ProfId4, (15) ProfId5, or (16) ProfId6 parameter to htdocs/admin/company.php.

debian логотип

CVE-2017-14239

CVSS3: 5.4
debian
больше 8 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CR ...

github логотип

GHSA-74c7-r9m3-hvj4

CVSS3: 5.4
github
больше 3 лет назад

Dolibarr cross-site scripting (XSS) vulnerability

3.5 Low

CVSS2

5.4 Medium

CVSS3