Description Dolibarr ERP/CRM is affected by SQL injection in versions before 5.0.4 via product/stats/card.php (type parameter). Remediation References CVE-2017-9839 Related Vulnerabilities WordPress Plugin WP VR-360 Panorama and Virtual Tour Builder For WordPress Cross-Site Scripting (8.2.6) WordPress Plugin MainWP Child Reports SQL Injection (2.0.7) phpMyFAQ Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2017-11187) WordPress Plugin ActiveCampaign-Forms, Site Tracking, Live Chat Unspecified Vulnerability (5.7) Joomla! Core 3.x.x Security Bypass (3.0.0 - 3.9.23) Severity High Classification CVE-2017-9839 CWE-138 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities