Headline
GHSA-fpvg-m786-h5vr: Dolibarr vulnerable to unauthenticated database access
An issue in Dolibarr v16.0.0 to v16.0.5 allows unauthenticated attackers to perform a database dump and access a company’s entire customer file, prospects, suppliers, and employee information if a contact file exists.
Dolibarr vulnerable to unauthenticated database access
High severity GitHub Reviewed Published Jun 13, 2023 to the GitHub Advisory Database • Updated Jun 14, 2023
Related news
CVE-2023-33568: Dolibarr : unauthenticated contacts database theft
An issue in Dolibarr v16.0.0 to v16.0.5 allows unauthenticated attackers to perform a database dump and access a company's entire customer file, prospects, suppliers, and employee information if a contact file exists.