VDB
CVE-2020-13094
CVE-2020-13094
PUBLISHED
Dolibarr before 11.0.4 allows XSS.
EPSS 1.71% · 82.7th percentile
Risk Scores
EPSS Score
1.71%
82.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | dolibarr | 0, 3.5.5+dfsg1-2, 3.5.7+dfsg1-1 |
Exploit Intelligence
- Dolibarr 11.0.3 - Persistent Cross-Site Scripting (github-poc)
- Dolibarr 11.0.3 - Persistent Cross-Site Scripting (github-poc)
- Dolibarr 11.0.3 - Persistent Cross-Site Scripting (github-poc)
- Dolibarr 11.0.3 - Persistent Cross-Site Scripting (github-poc)
- Dolibarr 11.0.3 - Persistent Cross-Site Scripting (github-poc)
- Dolibarr 11.0.3 - Persistent Cross-Site Scripting (github-poc)
- http://packetstormsecurity.com/files/157752/Dolibarr-11.0.3-Cross-Site-Scripting.html (nist-nvd)
- https://www.dolibarr.org/dolibarr-erp-crm-11-0-4-maintenance-release-for-branch-11-0-is-available.php (circl)
- https://github.com/Dolibarr/dolibarr/blob/11.0.4/ChangeLog (circl)
- Filetto 1.0 Denial Of Service Exploit (0day-today)
…and 3 more exploits
Timeline
- May 18, 2020 CVE Published
- May 19, 2020 CVE Updated
- May 19, 2020 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2020-13094 third-party-advisory
- http://packetstormsecurity.com/files/157752/Dolibarr-11.0.3-Cross-Site-Scripting.html third-party-advisory
- https://github.com/Dolibarr/dolibarr/blob/11.0.4/ChangeLog third-party-advisory
- https://www.dolibarr.org/dolibarr-erp-crm-11-0-4-maintenance-release-for-branch-11-0-is-available.php third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2020-13094 third-party-advisory