Description
An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the desiredstock parameter.
Remediation
References
Related Vulnerabilities
Drupal Core 5.x Cross-Site Request Forgery (5.0 - 5.2)
WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.3.8)
Atlassian Jira CVE-2019-20402 Vulnerability (CVE-2019-20402)
Oracle Database Server CVE-2023-22034 Vulnerability (CVE-2023-22034)
WordPress Plugin Bug Library Unspecified Vulnerability (2.0.7)