CVE-2013-2092

CVE-2013-2092

EPSS 1.3%

Cross-site Scripting (XSS) in Dolibarr ERP/CRM 3.3.1 allows remote attackers to inject arbitrary web script or HTML in functions.lib.php.

Affected products

dolibarr · dolibarr

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Dolibarr/dolibarr/commit/8a90598b23e1b2689848187941f7a96b04907005 https://security-tracker.debian.org/tracker/CVE-2013-2092 http://www.openwall.com/lists/oss-security/2013/05/14/3