CVE-2022-30875

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/dolibarr/dolibarr

Identifiers

CVE-2022-30875, GHSA-f2g5-426f-353q

Package Slug

packagist/dolibarr/dolibarr

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

Dolibarr 12.0.5 is vulnerable to Cross Site Scripting (XSS) via Sql Error Page.

Affected Versions

Version 12.0.5

Solution

Upgrade to version 13.0.0 or above.

Last Modified

2022-06-10

source