Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

ERP

Dolibarr

Dolibarr is a software built by modules addition to manage small or medium companies freelancers or foundations. Dolibarr is an OpenSource project base on a WAMP MAMP or LAMP server.

Official Site:

https://www.dolibarr.org/

Severity Summary:

Critical: 28 High: 34 Medium: 64
Reference
Title
Severity
CVE-2017-17898
Dolibarr Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2019-19209
Dolibarr Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2022-0731
Dolibarr Incorrect Authorization Vulnerability
Medium
CVE-2022-0746
Dolibarr Other Vulnerability
Medium
CVE-2022-0414
Dolibarr Other Vulnerability
Medium
CVE-2020-7996
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-17576
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-17577
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-30875
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-17223
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-2060
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-17578
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-19206
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2022-0174
Dolibarr Improper Input Validation Vulnerability
Medium
CVE-2020-7994
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-19211
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-9016
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-19210
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-42220
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-5323
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-4198
Dolibarr Missing Authorization Vulnerability
Medium
CVE-2020-11823
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-5842
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-23817
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-3991
Dolibarr Authorization Bypass Through User-Controlled Key Vulnerability
Medium
CVE-2020-13094
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-13239
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-13240
Dolibarr Incorrect Default Permissions Vulnerability
Medium
CVE-2020-14475
Dolibarr Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-14201
Dolibarr Improper Privilege Management Vulnerability
Medium