CVE-2013-2091

Summary

SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php.

Affected Software

VendorProductVersion RangeStatus
dolibarrdolibarr3.3.1affected

Weaknesses

  • SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References