E19-0zkf1
CVSS:
5.5 (AV:N/AC:L/Au:S/C:P/I:P/A:N)
False Positive:
f
Variants:
1
Year:
2019
Description
This strike exploits an SQL injection vulnerability in Dolibarr ERP-CRM.
The vulnerability is due to the improper sanitization of requests sent to the application. An attacker could exploit.
this by sending a specifically crafted 'rowid' parameter, potentially resulting in the execution of SQL commands which may lead to information disclosure.