Description
An issue in Dolibarr 16 before 16.0.5 allows unauthenticated attackers to perform a database dump and access a company's entire customer file, prospects, suppliers, and employee information if a contact file exists.
Remediation
References
Related Vulnerabilities
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4901)
WordPress Plugin Remove Yoast SEO comments Unspecified Vulnerability (1.0.4)
phpBB Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2026-29199)