Security Advisory

CVE-2020-13828

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-08-31 15:14:03

Last updated 2024-08-04 12:25:16

Assigner mitre

State PUBLISHED

Description

Dolibarr 11.0.4 is affected by multiple stored Cross-Site Scripting (XSS) vulnerabilities that could allow remote authenticated attackers to inject arbitrary web script or HTML via ticket/card.php?action=create with the subject, message, or address parameter; adherents/card.php with the societe or address parameter; product/card.php with the label or customcode parameter; or societe/card.php with the alias or barcode parameter.

← Browse all CVEs View on cve.org ↗