Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Dolibarr Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability - CVE-2023-30253 - Vulnerability Database
Dolibarr

Dolibarr Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability - CVE-2023-30253

High
Reference: CVE-2023-30253
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-30253
Title: Dolibarr Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
Overview:

Dolibarr before 17.0.1 allows remote code execution by an authenticated user via an uppercase manipulation: ltPHP instead of ltphp in injected data.