Description

SQL injection vulnerability in fourn/index.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the socid parameter.

Remediation

References

CVE-2017-17900

Related Vulnerabilities

SugarCRM Other Vulnerability (CVE-2004-1225)

WordPress Plugin Comments-wpDiscuz SQL Injection (5.3.5)

WordPress Plugin wpDataTables-WordPress Data Table, Dynamic Tables & Table Charts Cross-Site Scripting (1.2.1)

WordPress Plugin Shortlinks by Pretty Links-Best WordPress Link Tracking Unspecified Vulnerability (2.1.8)

e107 Other Vulnerability (CVE-2006-2590)

Severity

Critical

Classification

CVE-2017-17900 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities