Dolibarr ERP CRM 8.0.4
Approved changes feed: RSS · Atom
cpe:2.3:a:dolibarr:dolibarr_erp\/crm:8.0.4:*:*:*:*:*:*:*
part: a version: 8.0.4 update: *
| Vendor | Dolibarr (63aa6448-b9f1-5072-badf-d5da7e178b3f) |
|---|---|
| Product | Dolibarr Erp/Crm (43fce236-1427-50a7-9efe-8afa61d3c40d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-25710 |
vulnerable | 2026-06-08 05:13:42.824489 |
Dolibarr ERP-CRM 8.0.4 SQL Injection via rowid Parameter
HIGH (8.2)
Dolibarr ERP-CRM 8.0.4 contains an SQL injection vulnerability in the rowid parameter of the admin dict.php endpoint that allows attackers to execute arbitrary SQL queries. Attackers can inject malicious SQL code through the rowid POST parameter to extract sensitive database information using error-based SQL injection techniques.
Published: 2026-04-12T12:28:54.936Z
Updated: 2026-04-13T12:07:35.021Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.