Moderate severityNVD Advisory· Published Oct 16, 2019· Updated Aug 5, 2024

CVE-2019-17577

Description

An issue was discovered in Dolibarr 10.0.2. It has XSS via the "outgoing email setup" feature in the admin/mails.php?action=edit URI via the "Email used for error returns emails (fields 'Errors-To' in emails sent)" field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Members only

The AI Insight narrative is available to signed-in members. Sign in or create a free account to read it.

Affected products

Dolibarr/Dolibarrdescription
ghsa-coords
pkg:composer/dolibarr/dolibarr

Patches

Members only

Discovered fix commits and diffs is available to signed-in members. Sign in or create a free account to read it.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/advisories/GHSA-r4gf-ggp5-25g5ghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2019-17577ghsaADVISORY
mycvee.blogspot.com/p/cve-2019-17576.htmlghsax_refsource_MISCWEB

News mentions

No linked articles in our index yet.

cvss	0.260
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000