High severity8.8NVD Advisory· Published Apr 11, 2018· Updated Jun 17, 2026
CVE-2017-18260
CVE-2017-18260
Description
Dolibarr ERP/CRM is affected by multiple SQL injection vulnerabilities in versions through 7.0.0 via comm/propal/list.php (viewstatut parameter) or comm/propal/list.php (propal_statut parameter, aka search_statut parameter).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
dolibarr/dolibarrPackagist | <= 7.0.0 | — |
Affected products
1Patches
Vulnerability mechanics
References
3- www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2017-010nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-9986-6m4g-25f6ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-18260ghsaADVISORY
News mentions
0No linked articles in our index yet.