CVE-2020-12669

Publication date

2020-05-06 18:30:41

Family

mitre

State

PUBLISHED

Description

core/get_menudiv.php in Dolibarr before 11.0.4 allows remote authenticated attackers to bypass intended access restrictions via a non-alphanumeric menu parameter.