Dolibarr ERP/CRM 3.3.1 does not properly validate user...
Critical severity
Unreviewed
Published
May 5, 2022
to the GitHub Advisory Database
•
Updated Jan 28, 2023
Description
Published by the National Vulnerability Database
Nov 20, 2019
Published to the GitHub Advisory Database
May 5, 2022
Last updated
Jan 28, 2023
Dolibarr ERP/CRM 3.3.1 does not properly validate user input in viewimage.php and barcode.lib.php which allows remote attackers to execute arbitrary commands.
References