Description
Dolibarr ERP/CRM 4.0.4 allows password changes without supplying the current password, which makes it easier for physically proximate attackers to obtain access via an unattended workstation.
Remediation
References
Related Vulnerabilities
WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Scripting (2.3.0)
PHP Other Vulnerability (CVE-2003-0863)
XWikiplatform Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-66473)
WordPress Plugin WP Fastest Cache SQL Injection (0.8.4.8)
WordPress Plugin Premium SEO Pack Multiple Vulnerabilities (1.8.0)