CVE-2021-36625

Publication date

2022-03-31 17:50:36

Family

mitre

State

PUBLISHED

Description

An SQL Injection vulnerability exists in Dolibarr ERP/CRM 13.0.2 (fixed version is 14.0.0) via a POST request to the country_id parameter in an UPDATE statement.