FLAT-W8K9S (CVE-2026-7688)
OS Command Injection In dolibarr/dolibarr
0.6
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-Y6GIO (CVE-2026-7689)
Insufficient data authenticity validation In dolibarr/dolibarr
1.7
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-5SCOJ (CVE-2026-31019)
OS Command Injection In dolibarr/dolibarr
6.1
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-FEMGL (CVE-2026-31018)
Lack of data validation In dolibarr/dolibarr
6.1
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-MPP0V (CVE-2026-23500)
OS Command Injection In dolibarr/dolibarr
7.6
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-31SDF (CVE-2019-25710)
SQL injection - Code In dolibarr/dolibarr
6.7
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-4QB1F (CVE-2026-34036)
Local file inclusion In dolibarr/dolibarr
5.7
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-HGA8S (CVE-2025-56588)
Lack of data validation In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-99Q0S (GHSA-49xw-hw94-fmv2)
Remote File Inclusion In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-HF2N2 (CVE-2024-55228)
Server side cross-site scripting In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-57V5A (CVE-2024-55227)
Server side cross-site scripting In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BP2CT (CVE-2021-3991)
Improper authorization control for web services In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BD1M6 (CVE-2024-40137)
Lack of data validation In dolibarr/dolibarr
4.7
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-VOJP0 (CVE-2024-37821)
Insecure file upload In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-WVXLY (CVE-2024-34051)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-O14WL (CVE-2024-5315)
SQL injection - Code In dolibarr/dolibarr
6.2
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BI3D7 (CVE-2024-5314)
SQL injection - Code In dolibarr/dolibarr
8.0
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-QPFJZ (CVE-2024-23817)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
5.0
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-PO3E6 (CVE-2024-31503)
Cross-site request forgery In dolibarr/dolibarr
4.2
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-QYLE2 (CVE-2024-29477)
Lack of data validation In dolibarr/dolibarr
5.9
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-JDP6S (CVE-2023-4198)
Improper authorization control for web services In dolibarr/dolibarr
4.9
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-AA4FA (CVE-2023-4197)
Lack of data validation In dolibarr/dolibarr
5.2
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-1WD1Q (CVE-2023-5842)
Server side cross-site scripting In dolibarr/dolibarr
1.1
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-VW0MC (CVE-2023-5323)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.1
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BQSVA (CVE-2023-38888)
Server side cross-site scripting In dolibarr/dolibarr
7.7
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-797OW (CVE-2023-38887)
Insecure file upload In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-IRT82 (CVE-2023-38886)
Remote command execution In dolibarr/dolibarr
6.1
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-QFOQU (CVE-2023-33568)
Business information leak In dolibarr/dolibarr
6.6
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-NXUOV (CVE-2023-30253)
OS Command Injection In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-6JGG9 (CVE-2022-4093)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-DN02I (CVE-2022-43138)
Excessive privileges In dolibarr/dolibarr
7.7
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-EV6E6 (CVE-2022-40871)
Lack of data validation In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-XC0J7 (CVE-2022-2060)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-6UM4U (CVE-2022-30875)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-WY7M3 (CVE-2021-33816)
Server side template injection In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-W1GHW (CVE-2021-33618)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-V5ZDS (CVE-2020-35136)
Server side template injection In dolibarr/dolibarr
7.6
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-P5IWR (CVE-2020-14209)
Insecure file upload In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-L1PIB (CVE-2020-13828)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-JII7J (CVE-2020-14201)
Excessive privileges In dolibarr/dolibarr
4.9
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-4UDNN (CVE-2020-14475)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-GHBTU (CVE-2020-14443)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-LUIEY (CVE-2020-13239)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-7D7KI (CVE-2020-13240)
Server side cross-site scripting In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-P9PF7 (CVE-2020-12669)
Authentication mechanism absence or evasion In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-RZH0V (CVE-2020-11825)
Cross-site request forgery In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-XEIO7 (CVE-2020-11823)
Server side cross-site scripting In dolibarr/dolibarr
0.5
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-XFKTE (CVE-2019-19212)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-385NF (CVE-2019-19209)
SQL injection - Code In dolibarr/dolibarr
6.6
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-VWM7Y (CVE-2019-19210)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-F37T8 (CVE-2019-19211)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-EBHWB (CVE-2020-9016)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-0P09V (CVE-2020-7995)
Lack of protection against brute force attacks In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-7LP68 (CVE-2020-7994)
Server side cross-site scripting In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-M8WRP (CVE-2019-19206)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BZ7R6 (CVE-2019-17577)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-HCIMF (CVE-2019-17578)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-ARLO1 (CVE-2019-17576)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-LTMUX (CVE-2019-17223)
Server side cross-site scripting In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-3OTKQ (CVE-2019-16685)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-G10KX (CVE-2019-16688)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-Q81GP (CVE-2019-16687)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-805WC (CVE-2019-16686)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BUJ6X (CVE-2019-15062)
Cross-site request forgery In dolibarr/dolibarr
6.1
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-IK0IB (CVE-2019-11200)
OS Command Injection In dolibarr/dolibarr
5.2
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-K8FZS (CVE-2019-11201)
Server side template injection In dolibarr/dolibarr
4.4
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-X8NBX (CVE-2019-1010054)
Cross-site request forgery In dolibarr/dolibarr
5.2
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-MJV9X (CVE-2019-1010016)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-BYI7D (CVE-2016-1912)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-1V6IH (CVE-2015-3935)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-K7K4V (CVE-2017-7886)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-IEAWW (CVE-2017-7888)
Insecure encryption algorithm In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-SNR02 (CVE-2017-7887)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-K5F1D (CVE-2017-9435)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-0XL3Z (CVE-2017-9840)
Insecure file upload In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-NHP6G (CVE-2017-14238)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-994HR (CVE-2017-14241)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-M1T21 (CVE-2017-14242)
SQL injection - Code In dolibarr/dolibarr
5.2
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-Q01J7 (CVE-2017-14240)
Business information leak In dolibarr/dolibarr
6.6
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-WBQ92 (CVE-2017-14239)
Server side cross-site scripting In dolibarr/dolibarr
1.1
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-MUU92 (CVE-2017-17897)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-0EPEQ (CVE-2017-17899)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-EQ95S (CVE-2017-17898)
Business information leak In dolibarr/dolibarr
6.6
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-GXJNL (CVE-2017-17900)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-A9S96 (CVE-2017-17971)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-WHG2Z (CVE-2017-1000509)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-682XE (CVE-2017-9839)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-JJWBY (CVE-2017-18260)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-R0RBX (CVE-2017-9838)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-EY363 (CVE-2017-18259)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-LDTWB (CVE-2018-10095)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-XPZJW (CVE-2018-10094)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-A0EW7 (CVE-2018-13448)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-CS0QW (CVE-2018-13447)
SQL injection - Code In dolibarr/dolibarr
8.1
High
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-PYTBD (CVE-2018-13450)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-0Q4YT (CVE-2018-13449)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-WNYUF (CVE-2018-19995)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-RYL90 (CVE-2018-19993)
Reflected cross-site scripting (XSS) In dolibarr/dolibarr
1.3
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-D1C8Y (CVE-2018-19992)
Server side cross-site scripting In dolibarr/dolibarr
1.2
Low
Ecosystem: Packagist
Package: dolibarr/dolibarr
FLAT-YWAGO (CVE-2018-19994)
SQL injection - Code In dolibarr/dolibarr
6.3
Medium
Ecosystem: Packagist
Package: dolibarr/dolibarr