A vulnerability classified as critical has been found in Dolibarr up to 13.0.4 (Enterprise Resource Planning Software). Affected is some unknown functionality of the file /adherents/note.php?id=1 of the component Private Note Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
Dolibarr up to 13.0.4 Private Note /adherents/note.php access control
- Virtual Patching
- August 10, 2021
- 7:04 am
Contact us to get started
CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW
Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to
CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION
Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely
CVE-2022-4126 : ABB RCCMD PRIOR 4.40 230207 HARD-CODED PASSWORD
Description Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and