Description
Dolibarr ERP/CRM 3.0 through 10.0.3 allows XSS via the qty parameter to product/fournisseurs.php (product price screen).
Remediation
References
Related Vulnerabilities
WordPress Plugin W3 Total Cache Server-Side Request Forgery (0.9.7.3)
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068)
WordPress Plugin Image Gallery with Slideshow Multiple Vulnerabilities (1.5.2)
WordPress Plugin Job Board by BestWebSoft Cross-Site Scripting (1.0.0)
WordPress Plugin Prismatic Multiple Cross-Site Scripting Vulnerabilities (2.7)