CVE-2024-5314 | Dolibarr ERP CMS 9.0.1 /dolibarr/admin/dict.php sortorder/sortfield sql injection

Inserito da Angelo Barbosa | Mag 24, 2024 | CVE

A vulnerability classified as critical was found in Dolibarr ERP CMS 9.0.1. Affected by this vulnerability is an unknown functionality of the file /dolibarr/admin/dict.php. The manipulation of the argument sortorder/sortfield leads to sql injection.

This vulnerability is known as CVE-2024-5314. The attack can be launched remotely. There is no exploit available.

CVE-2024-5314 | Dolibarr ERP CMS 9.0.1 /dolibarr/admin/dict.php sortorder/sortfield sql injection

Post correlati

CVE-2024-3480 | Motorola Framework prior 2023-09-01 Telephony implicit intent

CVE-2024-5186 | imartinez privategpt up to 0.5.0 Requests path server-side request forgery

CVE-2024-23847 | Yokogawa Rental & Lease Unifier/Unifier Cast permission (ID 20240527)

CVE-2024-31610 | code-projects Simple School Management System 1.0 File unrestricted upload