CVE-2018-25357

CRITICAL

Dolibarr ERP CRM 7.0.3 Remote Code Evaluation via install/step1.php

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25357. PoCs published by om3rcitak.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated remote code execution vulnerability in Dolibarr ERP CRM <=7.0.3 via command injection in the 'db_name' parameter during the installation process. The attack pattern injects a system command through a crafted POST request to 'step1.php'.

Description

Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP code through the db_name parameter. Attackers can send a POST request to install/step1.php with malicious PHP code in the db_name parameter, then execute commands via the check.php endpoint using the cmd GET parameter.

Exploits (1)

exploitdb WORKING POC

by om3rcitak · textwebappsphp

https://www.exploit-db.com/exploits/44964

View Code ZIP pw:eip

This exploit demonstrates an unauthenticated remote code execution vulnerability in Dolibarr ERP CRM <=7.0.3 via command injection in the 'db_name' parameter during the installation process. The attack pattern injects a system command through a crafted POST request to 'step1.php'.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Dolibarr ERP CRM <=7.0.3

No auth needed

Prerequisites: Access to the installation page of Dolibarr · PHP system function not disabled

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed May 24, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit exploit

ExploitDB-44964

https://www.exploit-db.com/exploits/44964

Product product

Official Product Homepage

https://dolibarr.org

Product product

Product Reference

https://github.com/Dolibarr/dolibarr

Third Party Advisory third-party-advisory

VulnCheck Advisory: Dolibarr ERP CRM 7.0.3 Remote Code Evaluation via install/step1.php

https://www.vulncheck.com/advisories/dolibarr-erp-crm-remote-code-evaluation-via-install-step1-php

Scores

CVSS v3 9.8

EPSS 0.0175

EPSS Percentile 74.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-94

Status published

Products (2)

Dolibarr/Dolibarr ERP CRM < 7.0.3

dolibarr/dolibarr_erp\/crm < 7.0.3

Published May 23, 2026

Tracked Since May 24, 2026