CVE-2019-11781

Summary

Improper input validation in portal component in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier, allows remote attackers to trick victims into modifying their account via crafted links, leading to privilege escalation.

Affected Software

VendorProductVersion RangeStatus
OdooOdoo Communityunspecified <= 12.0affected
OdooOdoo Enterpriseunspecified <= 12.0affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References