Security Advisory

CVE-2020-35136

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-23 14:39:49

Last updated 2024-08-04 16:55:10

Assigner mitre

State PUBLISHED

Description

Dolibarr 12.0.3 is vulnerable to authenticated Remote Code Execution. An attacker who has the access the admin dashboard can manipulate the backup function by inserting a payload into the filename for the zipfilename_template parameter to admin/tools/dolibarr_export.php.

← Browse all CVEs View on cve.org ↗