Description Dolibarr Open Source ERP & CRM for Business before v14.0.1 allows attackers to escalate privileges via a crafted API. Remediation References CVE-2022-43138 Related Vulnerabilities Oracle Database Server CVE-2014-4296 Vulnerability (CVE-2014-4296) Drupal Core 7.x Security Bypass (7.0 - 7.43) WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.5.18.727) WordPress Plugin Kadence WooCommerce Email Designer PHP Object Injection (1.5.6) Moodle Externally Controlled Reference to a Resource in Another Sphere Vulnerability (CVE-2023-30943) Severity Critical Classification CVE-2022-43138 CWE-269 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities