Security Advisory

CVE-2021-3991

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-15 10:52:49
Last updated 2024-11-15 18:26:07
Assigner @huntr_ai
State PUBLISHED

Description

An Improper Authorization vulnerability exists in Dolibarr versions prior to the develop branch. A user with restricted permissions in the Reception section is able to access specific reception details via direct URL access, bypassing the intended permission restrictions.