Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2019-1010054 - Vulnerability Database

Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2019-1010054

High

Reference: CVE-2019-1010054

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-1010054

Title: Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Dolibarr 7.0.0 is affected by: Cross Site Request Forgery (CSRF). The impact is: allow malitious html to change user password disable users and disable password encryptation. The component is: Function User password change user disable and password encryptation. The attack vector is: admin access malitious urls.