GHSA-8fvr-7945-mg7w

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-8fvr-7945-mg7w/GHSA-8fvr-7945-mg7w.json
Aliases
  • CVE-2022-2060
Published
2022-06-14T00:00:37Z
Modified
2022-06-20T21:36:42Z
Details

A Cross-site Scripting (XSS) vulnerability exists in the admin/accountant.php file. The fields town, name, and Accountant code can be used to escape double quote protection.

References

Affected packages

Packagist / dolibarr/dolibarr

dolibarr/dolibarr

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
16.0

Affected versions