Headline

GHSA-7cm4-vmf2-8wf2: Dolibarr vulnerable to Eval Injection

Dolibarr ERP & CRM <=15.0.3 is vulnerable to Eval injection. By default, any administrator can be added to the installation page of dolibarr, and if successfully added, malicious code can be inserted into the database and then execute it by eval.

2 years ago

ghsa

Open in Source

#git

Dolibarr vulnerable to Eval Injection

High severity GitHub Reviewed Published Oct 12, 2022 • Updated Oct 12, 2022

2 years ago

CVE

Open in Source

#sql #csrf #vulnerability #web #mac #windows #apple #js #git #java #intel #php #rce #auth #chrome #webkit #firefox #ssl

ghsa: Latest News

GHSA-8fh4-942r-jf2g: LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/services.inc.php

1 day ago

ghsa

GHSA-7q7g-4xm8-89cq: Regular Expression Denial of Service (ReDoS) in @eslint/plugin-kit

1 day ago

ghsa

GHSA-phm4-wf3h-pc3r: Unpatched Remote Code Execution in Gogs

1 day ago

ghsa

GHSA-x645-6pf9-xwxw: LibreNMS has an Authenticated OS Command Injection

1 day ago

ghsa

GHSA-gv4m-f6fx-859x: LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.php

1 day ago

ghsa

Headline

GHSA-7cm4-vmf2-8wf2: Dolibarr vulnerable to Eval Injection

Related news

ghsa: Latest News