Description Dolibarr Open Source ERP & CRM for Business before v14.0.1 allows attackers to escalate privileges via a crafted API. Remediation References CVE-2022-43138 Related Vulnerabilities Moodle Other Vulnerability (CVE-2007-1429) PrestaShop Files or Directories Accessible to External Parties Vulnerability (CVE-2020-5250) Oracle HTTP Server Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4182) WordPress Plugin Appointment Booking Calendar-BirchPress Scheduler Unspecified Vulnerability (1.13.0) MySQL CVE-2012-1690 Vulnerability (CVE-2012-1690) Severity Critical Classification CVE-2022-43138 CWE-269 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities