ID | CVE-2016-1912 | ||||||
Sažetak | Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 allow remote authenticated users to inject arbitrary web script or HTML via the (1) lastname, (2) firstname, (3) email, (4) job, or (5) signature parameter to htdocs/user/card.php. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:S/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 22-01-2016 - 00:28 | ||||||
Objavljeno | 15-01-2016 - 20:59 |