CVE-2018-10094

CRITICAL

Dolibarr < 7.0.2 - SQL Injection via Integer Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2018-10094. PoCs published by Sysdream, Issam Rabhi, Kevin Locati, Shelby Pace, including Metasploit module auxiliary/gather/dolibarr_creds_sqli.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Dolibarr ERP & CRM (CVE-2018-10094) by bypassing input validation through URL encoding. The PoC retrieves the database version by injecting a UNION-based SQL query into the 'statut' parameter.

Description

SQL injection vulnerability in Dolibarr before 7.0.2 allows remote attackers to execute arbitrary SQL commands via vectors involving integer parameters without quotes.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Sysdream · textwebappsphp
https://www.exploit-db.com/exploits/44805

This exploit demonstrates a SQL injection vulnerability in Dolibarr ERP & CRM (CVE-2018-10094) by bypassing input validation through URL encoding. The PoC retrieves the database version by injecting a UNION-based SQL query into the 'statut' parameter.

Classification
Working Poc 100%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Dolibarr ERP & CRM version 7.0.0
No auth needed
Prerequisites: Access to the Dolibarr web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by Issam Rabhi, Kevin Locati, Shelby Pace · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/dolibarr_creds_sqli.rb

This Metasploit module exploits a SQL injection vulnerability in Dolibarr ERP/CRM to extract usernames and encrypted passwords from the database. It requires authenticated access and targets a known CVE from 2018.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Dolibarr ERP/CRM (versions affected by CVE-2018-10094)
Auth required
Prerequisites: Valid credentials for Dolibarr · Access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2018/05/21/1
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/44805/

Scores

CVSS v3 9.8
EPSS 0.7371
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (2)
dolibarr/dolibarr < 7.0.2
dolibarr/dolibarr 0 - 7.0.2Packagist
Published May 22, 2018
Tracked Since Feb 18, 2026