Description
Dolibarr 7.0.0 is affected by: Cross Site Request Forgery (CSRF). The impact is: allow malitious html to change user password, disable users and disable password encryptation. The component is: Function User password change, user disable and password encryptation. The attack vector is: admin access malitious urls.
Remediation
References
Related Vulnerabilities
MySQL CVE-2021-2088 Vulnerability (CVE-2021-2088)
WordPress Plugin Business Hours Pro Arbitrary File Upload (5.5.0)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-1402)
MySQL CVE-2021-2022 Vulnerability (CVE-2021-2022)
Oracle Database Server CVE-2012-1746 Vulnerability (CVE-2012-1746)