AI Score
Confidence
Low
EPSS
Percentile
59.4%
An issue was discovered in Dolibarr through 7.0.0. expensereport/card.php in the expense reports module allows SQL injection via the integer parameters qty and value_unit.
github.com/Dolibarr/dolibarr
github.com/Dolibarr/dolibarr/issues/9449
nvd.nist.gov/vuln/detail/CVE-2018-16809