Description
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the status_batch parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Cimy User Extra Fields Denial of Service (2.6.3)
WordPress Plugin Quick Event Manager Cross-Site Scripting (9.6.4)
WordPress Plugin Wordpress Uninstall Cross-Site Request Forgery (1.2.1)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7834)
WordPress 3.9.x Denial of Service Vulnerability (3.9 - 3.9.23)