Bitnami/dolibarr — 46 CVEs

Loading…

All known vulnerabilities

CRITICAL9.8CVE-2022-4093SQL injection in Dolibarr

>= 16.0.1, <= 16.0.1, >= 16.0.2, <= 16.0.2

CRITICAL9.8CVE-2022-43138Dolibarr vulnerable to privilege escalation

from 0, < 14.0.1

CRITICAL9.8CVE-2022-40871Dolibarr vulnerable to Eval Injection

from 0, <= 15.0.3

CRITICAL9.8Dolibarr remote PHP code execution

>= 13.0.2, <= 13.0.2

CRITICAL9.8Dolibarr Improper Restriction of Excessive Authentication Attempts

>= 10.0.6, <= 10.0.6

CRITICAL9.6Cross Site Scripting vulnerability in Dolibarr ERP CRM

from 0, <= 17.0.1

CRITICAL9.1Dolibarr vulnerable to SQL Injection

>= 9.0.1, < 18.0.5

CRITICAL9.1Dolibarr vulnerable to SQL Injection

>= 9.0.1, < 18.0.5

CRITICAL9.0Dolibarr Cross-site Scripting vulnerability

>= 21.0.0-beta, < 21.0.0

HIGH8.8Dolibarr arbitrary file upload vulnerability

from 0, < 19.0.2

HIGH8.8File Upload vulnerability in Dolibarr ERP CRM

from 0, <= 17.0.1

HIGH8.8Dolibarr vulnerable to remote code execution via uppercase manipulation

from 0, < 17.0.1

HIGH8.8Dolibarr Cross-Site Request Forgery Vulnerability

>= 10.0.6, <= 10.0.6

HIGH8.8SQL Injection in Dolibarr

>= 13.0.2, <= 13.0.2

HIGH8.8Code injection in dolibarr/dolibarr

from 0, < 15.0.1

HIGH8.3SQL Injection in dolibarr

from 0, < 15.0.0

HIGH7.5Dolibarr vulnerable to Cross-Site Request Forgery

from 0, < 19.0.1

HIGH7.5Dolibarr Improper Input Validation vulnerability

from 0, <= 18.0.1

HIGH7.5Dolibarr vulnerable to unauthenticated database access

>= 16.0.0, < 16.0.5

HIGH7.5Access Control vulnerability in Dolibarr

>= 13.0.2, <= 13.0.2

HIGH7.2Dolibarr allows a remote privileged attacker to execute arbitrary code via a crafted command/script

from 0, <= 17.0.1

HIGH7.2Dolibarr authenticated Remote Code Execution

>= 12.0.3, <= 12.0.3

HIGH7.2Dolibarr vulnerable to Improper Authentication and Improper Access Control

>= 3.3.0-beta1, <= 3.3.0-beta1, >= 3.3.0-beta2, <= 3.3.0-beta2

HIGH7.1Dolibarr Application Home Page has HTML injection vulnerability

>= 18.0.4, < 18.0.5

MEDIUM6.8Dolibarr ERP CRM Code Injection vulnerability during installation

from 0, < 19.0.1

MEDIUM6.5Dolibarr Improper Input Validation vulnerability

from 0, <= 17.0.3

MEDIUM6.5Improper Authorization in dolibarr/dolibarr

from 0, < 16.0.0

MEDIUM6.1Cross-site Scripting in Dolibarr

>= 12.0.5, <= 12.0.5

MEDIUM6.1Dolibarr ERP and CRM contain XSS Vulnerability

>= 13.0.2, <= 13.0.2

MEDIUM6.1Dolibarr reflected cross-site scripting (XSS) vulnerability

>= 11.0.3, <= 11.0.3

MEDIUM6.1Dolibarr cross-site scripting (XSS) vulnerability

>= 10.0.6, <= 10.0.6

MEDIUM6.1XSS in Dolibarr ERP & CRM

>= 10.0.6, <= 10.0.6

MEDIUM5.4Dolibarr Cross-site Scripting vulnerability

>= 21.0.0-beta, < 21.0.0

MEDIUM5.4Dolibarr Cross-site Scripting vulnerability

from 0, < 18.0.0

MEDIUM5.4Cross site scripting in dolibarr

from 0, < 16.0.0

MEDIUM5.4Dolibarr stored Cross-Site Scripting (XSS) vulnerability

>= 11.0.4, <= 11.0.4

MEDIUM5.4Dolibarr Stored Cross-site Scripting via file upload

>= 11.0.4, <= 11.0.4

MEDIUM5.4Dolibarr Stored Cross-site Scripting

>= 11.0.4, <= 11.0.4

MEDIUM5.4Dolibarr stored Cross-site Scripting vulnerability

>= 10.0.6, <= 10.0.6

MEDIUM5.4Dolibarr ERP and CRM contain XSS Vulnerability

>= 11.0.0, <= 11.0.0

MEDIUM5.4Cross site scripting in dolibarr

>= 7.0.2, <= 7.0.2

MEDIUM4.8Cross-site Scripting (XSS) in dolibarr/dolibarr

from 0, < 16.0.5

MEDIUM4.3Improper Authorization in dolibarr/dolibarr

from 0, < 20.0.2

MEDIUM4.3Logic error in dolibarr/dolibarr

from 0, < 16.0.0

MEDIUM4.3Dolibarr vulnerable to Improper Validation of Specified Quantity in Input

from 0, < 16.0.0

MEDIUM4.3Logic error in dolibarr

from 0, < 15.0.0

pkg:Bitnami/dolibarr

✅ Check your installed version

All known vulnerabilities