Unrated severityNVD Advisory· Published Nov 20, 2019· Updated Aug 6, 2024
CVE-2013-2091
CVE-2013-2091
Description
SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.openwall.com/lists/oss-security/2013/05/14/3mitrex_refsource_MISC
- exchange.xforce.ibmcloud.com/vulnerabilities/84248mitrex_refsource_MISC
- github.com/Dolibarr/dolibarr/commit/9427e32e2ed54c1a2bc519a88c057207836df489mitrex_refsource_CONFIRM
- security-tracker.debian.org/tracker/CVE-2013-2091mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.