Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

ERP

Dolibarr

Dolibarr is a software built by modules addition to manage small or medium companies freelancers or foundations. Dolibarr is an OpenSource project base on a WAMP MAMP or LAMP server.

Official Site:

https://www.dolibarr.org/

Severity Summary:

Critical: 28 High: 29 Medium: 63
Reference
Title
Severity
CVE-2024-5315
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2018-13449
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2018-9019
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2018-10094
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-17900
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-17899
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-17897
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-14242
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-14238
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-9435
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-7888
Dolibarr Inadequate Encryption Strength Vulnerability
Critical
CVE-2018-13450
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2018-13448
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2018-16809
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2013-2093
Dolibarr Improper Input Validation Vulnerability
Critical
CVE-2013-2091
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2021-25955
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
CVE-2021-33816
Dolibarr Improper Control of Generation of Code (Code Injection) Vulnerability
Critical
CVE-2022-0224
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2022-40871
Dolibarr Incorrect Default Permissions Vulnerability
Critical
CVE-2022-4093
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2022-43138
Dolibarr Improper Privilege Management Vulnerability
Critical
CVE-2023-38888
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
CVE-2024-5314
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2018-13447
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2017-7886
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2019-19212
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
CVE-2020-7995
Dolibarr Improper Authentication Vulnerability
Critical
CVE-2024-29477
Dolibarr Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2021-25956
Dolibarr Improper Authentication Vulnerability
High