Lucene search
GoogleOSV:GHSA-726G-CGCQ-4XW8HistoryMay 14, 2022 - 3:23 a.m.
Dolibarr Cross-Site Scripting (XSS) vulnerability
2022-05-1403:23:30
Google
osv.dev
4
dolibarr
erp/crm
cross-site scripting
vulnerability
reflected
versions
index.php
core/ajax/box.php
product/stats/card.php
holiday/list.php
don/card.php
path_info
Dolibarr ERP/CRM is affected by multiple reflected Cross-Site Scripting (XSS) vulnerabilities in versions before 5.0.4: index.php (leftmenu parameter), core/ajax/box.php (PATH_INFO), product/stats/card.php (type parameter), holiday/list.php (month_create, month_start, and month_end parameters), and don/card.php (societe, lastname, firstname, address, zipcode, town, and email parameters).
Related
nvd
nvd
CVE-2017-9838
2018-04-11 03:29:00
ubuntucve
ubuntucve
CVE-2017-9838
2018-04-11 00:00:00
prion
prion
Cross site scripting
2018-04-11 03:29:00
veracode
veracode
Cross-site Scripting (XSS)
2017-10-25 05:29:28
cvelist
cvelist
CVE-2017-9838
2018-04-11 03:00:00
osv
osv
CVE-2017-9838
2018-04-11 03:29:00
github
github
Dolibarr Cross-Site Scripting (XSS) vulnerability
2022-05-14 03:23:30
cve
cve
CVE-2017-9838
2018-04-11 03:29:00
openvas
openvas
Dolibarr <= 5.0.3 Multiple Vulnerabilities
2018-04-11 00:00:00