Dolibarr Multiple Cross Site Scripting and SQL Injection Vulnerabilities

Bugtraq ID: 50777
Class: Input Validation Error
CVE: CVE-2011-4802
CVE-2011-4814
Remote: Yes
Local: No
Published: Nov 23 2011 12:00AM
Updated: Dec 15 2011 07:38PM
Credit: High-Tech Bridge SA Security Research Lab
Vulnerable: Dolibarr ERP/CRM Dolibarr 3.1 RC
Dolibarr ERP/CRM Dolibarr 3.0
Dolibarr ERP/CRM Dolibarr 3.1.0
Dolibarr ERP/CRM Dolibarr 3.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus