Identifier

CVE-2020-14443

Package Slug

packagist/dolibarr/dolibarr

Vulnerability

SQL Injection

Description

An SQL injection vulnerability in accountancy/customer/card.php in Dolibarr allows remote authenticated users to execute arbitrary SQL commands via the id parameter.

Affected Versions

All versions up to 11.0.3

Solution

Upgrade to version 11.0.4 or above.

Last Modified

2020-06-25

source