Description
A SQL injection vulnerability in accountancy/customer/card.php in Dolibarr 11.0.3 allows remote authenticated users to execute arbitrary SQL commands via the id parameter.
Remediation
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0799)
WordPress Plugin Calendar Cross-Site Scripting (1.3.7)
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9865)
WordPress Plugin Nofollow for external link Multiple Unspecified Vulnerabilities (1.1.2)
OpenVPN AS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2061)