Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-9840 - Vulnerability Database
Dolibarr

Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-9840

High
Reference: CVE-2017-9840
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-9840
Title: Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability
Overview:

Dolibarr ERP/CRM 5.0.3 and prior allows low-privilege users to upload files of dangerous types which can result in arbitrary code execution within the context of the vulnerable application.