Laurent Destailleur

62 exploits Active since Dec 2011
CVE-2017-14241 WRITEUP MEDIUM WRITEUP
Dolibarr 6.0.0 - Authenticated Stored Cross-Site Scripting via Title Parameter
Cross-site scripting (XSS) vulnerability in Dolibarr ERP/CRM 6.0.0 allows remote authenticated users to inject arbitrary web script or HTML via the Title parameter to htdocs/admin/menus/edit.php.
CVSS 5.4
CVE-2017-14242 WRITEUP CRITICAL WRITEUP
Dolibarr 6.0.0 - SQL Injection via don/list.php statut Parameter
SQL injection vulnerability in don/list.php in Dolibarr version 6.0.0 allows remote attackers to execute arbitrary SQL commands via the statut parameter.
CVSS 9.8
CVE-2017-17897 WRITEUP CRITICAL WRITEUP
Dolibarr ERP/CRM 6.0.4 - SQL Injection via comm/multiprix.php id Parameter
SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVSS 9.8
CVE-2017-17898 WRITEUP HIGH WRITEUP
Dolibarr ERP/CRM 6.0.4 - Exposure of Sensitive Information via Direct TPL.PHP File Access
Dolibarr ERP/CRM version 6.0.4 does not block direct requests to *.tpl.php files, which allows remote attackers to obtain sensitive information.
CVSS 7.5
CVE-2017-17899 WRITEUP CRITICAL WRITEUP
Dolibarr ERP/CRM 6.0.4 - SQL Injection via adherents/subscription/info.php rowid Parameter
SQL injection vulnerability in adherents/subscription/info.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the rowid parameter.
CVSS 9.8
CVE-2017-17900 WRITEUP CRITICAL WRITEUP
Dolibarr ERP/CRM < 6.0.5 - SQL Injection via fourn/index.php socid Parameter
SQL injection vulnerability in fourn/index.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the socid parameter.
CVSS 9.8
CVE-2017-9435 WRITEUP CRITICAL WRITEUP
Dolibarr ERP/CRM <5.0.3 - SQL Injection
Dolibarr ERP/CRM before 5.0.3 is vulnerable to a SQL injection in user/index.php (search_supervisor and search_statut parameters).
CVSS 9.8
CVE-2018-10092 WRITEUP HIGH WRITEUP
Dolibarr <7.0.2 - Command Injection
The admin panel in Dolibarr before 7.0.2 might allow remote attackers to execute arbitrary commands by leveraging support for updating the antivirus command and parameters used to scan file uploads.
CVSS 8.0
CVE-2018-10095 WRITEUP MEDIUM WRITEUP
Dolibarr < 7.0.2 - Cross-Site Scripting via foruserlogin Parameter
Cross-site scripting (XSS) vulnerability in Dolibarr before 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the foruserlogin parameter to adherents/cartes/carte.php.
CVSS 6.1
CVE-2018-13447 WRITEUP CRITICAL WRITEUP
Dolibarr ERP/CRM 7.0.3 - SQL Injection via statut Parameter
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter.
CVSS 9.8
CVE-2018-13448 WRITEUP CRITICAL WRITEUP
Dolibarr 7.0.3 - SQL Injection via country_id Parameter
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the country_id parameter.
CVSS 9.8
CVE-2018-13449 WRITEUP CRITICAL WRITEUP
Dolibarr ERP/CRM 7.0.3 - SQL Injection via statut_buy Parameter
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut_buy parameter.
CVSS 9.8
CVE-2018-13450 WRITEUP CRITICAL WRITEUP
Dolibarr 7.0.3 - SQL Injection via Status Batch Parameter
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the status_batch parameter.
CVSS 9.8
CVE-2018-19992 WRITEUP MEDIUM WRITEUP
Dolibarr < 8.0.4 - Authenticated Stored Cross-Site Scripting via Address or Town Parameter
A stored cross-site scripting (XSS) vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "address" (POST) or "town" (POST) parameter to adherents/type.php.
CVSS 5.4
CVE-2018-19993 WRITEUP MEDIUM WRITEUP
Dolibarr 8.0.2 - Reflected Cross-Site Scripting via transphrase Parameter
A reflected cross-site scripting (XSS) vulnerability in Dolibarr 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the transphrase parameter to public/notice.php.
CVSS 6.1
CVE-2018-19994 WRITEUP HIGH WRITEUP
Dolibarr 8.0.2 - Authenticated SQL Injection via desiredstock Parameter
An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the desiredstock parameter.
CVSS 8.8
CVE-2018-19995 WRITEUP MEDIUM WRITEUP
Dolibarr < 8.0.4 - Authenticated Stored Cross-Site Scripting via User Address or Town Parameter
A stored cross-site scripting (XSS) vulnerability in Dolibarr 8.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "address" (POST) or "town" (POST) parameter to user/card.php.
CVSS 5.4
CVE-2018-19998 WRITEUP HIGH WRITEUP
Dolibarr 8.0.2 - Authenticated SQL Injection via Employee Parameter
SQL injection vulnerability in user/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the employee parameter.
CVSS 8.8
CVE-2018-9019 WRITEUP CRITICAL WRITEUP
Dolibarr < 7.0.2 - SQL Injection via sortfield Parameter
SQL Injection vulnerability in Dolibarr before version 7.0.2 allows remote attackers to execute arbitrary SQL commands via the sortfield parameter to /accountancy/admin/accountmodel.php, /accountancy/admin/categories_list.php, /accountancy/admin/journals_list.php, /admin/dict.php, /admin/mails_templates.php, or /admin/website.php.
CVSS 9.8
CVE-2020-12669 WRITEUP HIGH WRITEUP
Dolibarr < 11.0.4 - Authenticated Access Control Bypass via Non-Alphanumeric Menu Parameter
core/get_menudiv.php in Dolibarr before 11.0.4 allows remote authenticated attackers to bypass intended access restrictions via a non-alphanumeric menu parameter.
CVSS 8.8
CVE-2020-14443 WRITEUP HIGH WRITEUP
Dolibarr < 11.0.3 and >=0 < 11.0.5 - Authenticated SQL Injection via id Parameter
A SQL injection vulnerability in accountancy/customer/card.php in Dolibarr 11.0.3 allows remote authenticated users to execute arbitrary SQL commands via the id parameter.
CVSS 8.8
CVE-2020-14475 WRITEUP MEDIUM WRITEUP
Dolibarr < 11.0.5 - Reflected Cross-Site Scripting in public/notice.php
A reflected cross-site scripting (XSS) vulnerability in Dolibarr 11.0.3 allows remote attackers to inject arbitrary web script or HTML into public/notice.php (related to transphrase and transkey).
CVSS 6.1
CVE-2020-35136 WRITEUP HIGH WRITEUP
Dolibarr <12.0.3 - Authenticated RCE
Dolibarr 12.0.3 is vulnerable to authenticated Remote Code Execution. An attacker who has the access the admin dashboard can manipulate the backup function by inserting a payload into the filename for the zipfilename_template parameter to admin/tools/dolibarr_export.php.
CVSS 7.2
CVE-2021-25954 WRITEUP MEDIUM WRITEUP
Dolibarr 2.8.1-13.0.4 - Improper Access Control in Private Note Endpoint
In “Dolibarr” application, 2.8.1 to 13.0.4 don’t restrict or incorrectly restricts access to a resource from an unauthorized actor. A low privileged attacker can modify the Private Note which only an administrator has rights to do, the affected field is at “/adherents/note.php?id=1” endpoint.
CVSS 4.3
CVE-2021-25955 WRITEUP CRITICAL WRITEUP
Dolibarr 2.8.1-13.0.2 - Stored Cross-Site Scripting in Private Note Field
In “Dolibarr ERP CRM”, WYSIWYG Editor module, v2.8.1 to v13.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the “Private Note” field at “/adherents/note.php?id=1” endpoint. These scripts are executed in a victim’s browser when they open the page containing the vulnerable field. In the worst case, the victim who inadvertently triggers the attack is a highly privileged administrator. The injected scripts can extract the Session ID, which can lead to full Account takeover of the admin and due to other vulnerability (Improper Access Control on Private notes) a low privileged user can update the private notes which could lead to privilege escalation.
CVSS 9.0