| CVE-2017-9840 |
high |
8.8 |
8.8 |
9y ago |
Dolibarr ERP and CRM Unsafe File Upload Vulnerability |
|
| CVE-2026-31019 |
high |
— |
8.0 |
1mo ago |
Dolibarr user with permission to edit PHP content can bypass filtering to restrict dangerous PHP functions |
|
| CVE-2017-17898 |
high |
7.5 |
7.5 |
9y ago |
Dolibarr sensitive information disclosure |
|
| CVE-2017-14240 |
high |
7.5 |
7.5 |
9y ago |
Dolibarr ERP and CRM Sensitive Data Disclosure |
|
| CVE-2017-8879 |
medium |
6.8 |
6.8 |
9y ago |
Dolibarr allows password changes without supplying the current password |
|
| CVE-2017-17971 |
medium |
6.1 |
6.1 |
9y ago |
Dolibarr ERP and CRM contain XSS Vulnerability |
|
| CVE-2017-7887 |
medium |
6.1 |
6.1 |
9y ago |
Dolibarr ERP and CRM contain XSS Vulnerability |
|
| CVE-2017-14241 |
medium |
5.4 |
5.4 |
9y ago |
Dolibarr ERP and CRM contain XSS Vulnerability |
|
| CVE-2017-14239 |
medium |
5.4 |
5.4 |
9y ago |
Dolibarr cross-site scripting (XSS) vulnerability |
|
| CVE-2016-1912 |
medium |
5.4 |
5.4 |
11y ago |
Dolibarr ERP and CRM contain XSS Vulnerabilities |
|
| CVE-2026-7688 |
medium |
5.0 |
5.0 |
25d ago |
Dolibarr has an Injection issue |
|
| CVE-2015-3935 |
medium |
— |
4.3 |
11y ago |
Dolibarr ERP and CRM contain Cross-site Scripting Vulnerability |
|
| CVE-2026-7689 |
low |
3.7 |
3.7 |
25d ago |
Dolibarr has Insufficient Verification of Data Authenticity |
|