Количество 4
Количество 4
CVE-2024-31503
Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and before, allows authenticated attackers to steal victim users' session cookies and CSRF protection tokens via user interaction with a crafted web page, leading to account takeover.
CVE-2024-31503
Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and before, allows authenticated attackers to steal victim users' session cookies and CSRF protection tokens via user interaction with a crafted web page, leading to account takeover.
CVE-2024-31503
Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and befor ...
GHSA-6ppg-rgrg-f573
Dolibarr vulnerable to Cross-Site Request Forgery
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-31503 Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and before, allows authenticated attackers to steal victim users' session cookies and CSRF protection tokens via user interaction with a crafted web page, leading to account takeover. | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
 | CVE-2024-31503 Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and before, allows authenticated attackers to steal victim users' session cookies and CSRF protection tokens via user interaction with a crafted web page, leading to account takeover. | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
| CVE-2024-31503 Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and befor ... | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
| GHSA-6ppg-rgrg-f573 Dolibarr vulnerable to Cross-Site Request Forgery | CVSS3: 7.5 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу