Description
An arbitrary file upload vulnerability in the Upload Template function of Dolibarr ERP CRM up to v19.0.1 allows attackers to execute arbitrary code via uploading a crafted .SQL file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Qyrr-simply and modern QR-Code creation Cross-Site Scripting (0.6)
WordPress Plugin AP Companion includes Backdoor [Only if downloaded via the vendor website] (1.0.6)
SharePoint CVE-2023-33165 Vulnerability (CVE-2023-33165)
WordPress Plugin WordPress Download Manager Multiple Security Bypass Vulnerabilities (2.6.92)