dolibarr/dolibarr vulnerabilities

Dolibarr ERP & CRM is a modern and easy to use web software to manage your business

Latest version: 10.0.3

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the dolibarr/dolibarr package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • M
Cross-site Scripting (XSS)
>=0.0.0 Not available 26 Nov, 2019
  • M
Cross-site Scripting (XSS)
>=0.0.0 Not available 16 Oct, 2019
  • M
Cross-site Scripting (XSS)
<10.0.2 Not available 16 Sep, 2019
  • M
Cross-site Scripting (XSS)
<10.0.2 Not available 16 Sep, 2019
  • M
Cross-site Scripting (XSS)
>6.0.3, <=6.0.4 Not available 16 Jul, 2019
  • H
Cross-site Scripting (XSS)
>=3.8.0, <7.0.1 Not available 10 Mar, 2019
  • H
SQL Injection
>=3.8.0, <7.0.1 Not available 07 Mar, 2019
  • M
Cross-site Scripting (XSS)
<8.0.4 Not available 06 Jan, 2019
  • H
SQL Injection
<8.0.4 Not available 06 Jan, 2019
  • M
Cross-site Scripting (XSS)
<8.0.4 Not available 06 Jan, 2019
  • H
SQL Injection
<7.0.4 Not available 23 Jul, 2018
  • H
SQL Injection
<7.0.4 Not available 23 Jul, 2018
  • H
SQL Injection
<7.0.4 Not available 23 Jul, 2018
  • H
SQL Injection
<7.0.4 Not available 23 Jul, 2018
  • M
Cross-site Scripting (XSS)
<7.0.2 Not available 23 May, 2018
  • H
SQL Injection
<7.0.2 Not available 23 May, 2018
  • H
Arbitrary Code Execution
<7.0.2 Not available 23 May, 2018
  • M
Cross-site Scripting (XSS)
>=0.0.0 Not available 17 Apr, 2018
  • H
SQL Injection
>=0.0.0 Not available 17 Apr, 2018
  • H
SQL Injection
<5.0.4 Not available 16 Apr, 2018
  • M
Cross-site Scripting (XSS)
<5.0.4 Not available 16 Apr, 2018
  • M
Cross-site Scripting (XSS)
>=0.0.0 Not available 18 Feb, 2018