Information on source package dolibarr

Available versions

ReleaseVersion
jessie3.5.5+dfsg1-1+deb8u1
stretch4.0.2+dfsg4-2
buster5.0.4+dfsg3-1
sid5.0.4+dfsg3-1

Open issues

BugjessiestretchbustersidDescription
CVE-2017-9840vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableDolibarr ERP/CRM 5.0.3 and prior allows low-privilege users to upload ...
CVE-2017-9435vulnerable (no DSA)vulnerable (no DSA)fixedfixedDolibarr ERP/CRM before 5.0.3 is vulnerable to a SQL injection in ...
CVE-2017-8879vulnerable (no DSA)vulnerable (no DSA)fixedfixedDolibarr ERP/CRM 4.0.4 allows password changes without supplying the ...
CVE-2017-7888vulnerable (no DSA)vulnerable (no DSA)fixedfixedDolibarr ERP/CRM 4.0.4 stores passwords with the MD5 algorithm, which ...
CVE-2017-7887vulnerable (no DSA)vulnerable (no DSA)fixedfixedDolibarr ERP/CRM 4.0.4 has XSS in doli/societe/list.php via the sall ...
CVE-2017-7886vulnerable (no DSA)vulnerable (no DSA)fixedfixedDolibarr ERP/CRM 4.0.4 has SQL Injection in ...
CVE-2017-14242vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableSQL injection vulnerability in don/list.php in Dolibarr version 6.0.0 ...
CVE-2017-14241vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableCross-site scripting (XSS) vulnerability in Dolibarr ERP/CRM 6.0.0 ...
CVE-2017-14240vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableThere is a sensitive information disclosure vulnerability in ...
CVE-2017-14239vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableMultiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM ...
CVE-2017-14238vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableSQL injection vulnerability in admin/menus/edit.php in Dolibarr ERP/CRM ...

Resolved issues

BugDescription
CVE-2016-1912Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ...
CVE-2015-8685Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ...
CVE-2015-3935Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ...
CVE-2014-7137Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM before ...
CVE-2014-3992Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow ...
CVE-2014-3991Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ...
CVE-2014-2054PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and ...
CVE-2013-2093
CVE-2013-2092
CVE-2013-2091
CVE-2012-1226Multiple directory traversal vulnerabilities in Dolibarr CMS 3.2.0 ...
CVE-2012-1225Multiple SQL injection vulnerabilities in Dolibarr CMS 3.2.0 Alpha and ...
CVE-2011-4814Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 3.1.0 ...
CVE-2011-4802Multiple SQL injection vulnerabilities in Dolibarr 3.1.0 RC and ...
CVE-2011-4329Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 3.1.0 ...

Search for package or bug name: Reporting problems