✅ 檢查你的版本
所有已知漏洞
>= 16.0.1, <= 16.0.1, >= 16.0.2, <= 16.0.2
from 0, < 14.0.1
from 0, <= 15.0.3
>= 13.0.2, <= 13.0.2
CRITICAL9.8CVE-2020-7995Dolibarr Improper Restriction of Excessive Authentication Attempts >= 10.0.6, <= 10.0.6
CRITICAL9.6CVE-2023-38888Cross Site Scripting vulnerability in Dolibarr ERP CRM from 0, <= 17.0.1
CRITICAL9.1CVE-2024-5315Multiple vulnerabilities in DOLIBARR's ERP CMS >= 9.0.1, < 18.0.5
CRITICAL9.1CVE-2024-5314Multiple vulnerabilities in DOLIBARR's ERP CMS >= 9.0.1, < 18.0.5
>= 21.0.0-beta, < 21.0.0
from 0, < 19.0.2
from 0, <= 17.0.1
HIGH8.8CVE-2023-30253Dolibarr vulnerable to remote code execution via uppercase manipulation from 0, < 17.0.1
HIGH8.8CVE-2020-11825Dolibarr Cross-Site Request Forgery Vulnerability >= 10.0.6, <= 10.0.6
>= 13.0.2, <= 13.0.2
from 0, < 15.0.1
from 0, < 15.0.0
HIGH7.5CVE-2024-31503Dolibarr vulnerable to Cross-Site Request Forgery from 0, < 19.0.1
HIGH7.5CVE-2023-4197Dolibarr ERP CRM (<= 18.0.1) Improper Input Sanitization Authenticated RCE from 0, <= 18.0.1
HIGH7.5CVE-2023-33568Dolibarr vulnerable to unauthenticated database access >= 16.0.0, < 16.0.5
>= 13.0.2, <= 13.0.2
HIGH7.2CVE-2023-38886Dolibarr allows a remote privileged attacker to execute arbitrary code via a crafted command/script from 0, <= 17.0.1
>= 12.0.3, <= 12.0.3
HIGH7.2CVE-2021-25956Improper User Access Control in "Dolibarr" Leads to Account Takeover >= 3.3.0-beta1, <= 3.3.0-beta1, >= 3.3.0-beta2, <= 3.3.0-beta2
HIGH7.1CVE-2024-23817Dolibarr Application Home Page has HTML injection vulnerability >= 18.0.4, < 18.0.5
MEDIUM6.8CVE-2024-29477Dolibarr ERP CRM Code Injection vulnerability during installation from 0, < 19.0.1
MEDIUM6.5CVE-2023-4198Dolibarr ERP CRM (<= 17.0.3) Improper Access Control from 0, <= 17.0.3
MEDIUM6.5CVE-2022-0731Improper Access Control (IDOR) in dolibarr/dolibarr from 0, < 16.0.0
>= 12.0.5, <= 12.0.5
>= 13.0.2, <= 13.0.2
MEDIUM6.1CVE-2020-14475Dolibarr reflected cross-site scripting (XSS) vulnerability >= 11.0.3, <= 11.0.3
MEDIUM6.1CVE-2020-7994Dolibarr cross-site scripting (XSS) vulnerability >= 10.0.6, <= 10.0.6
>= 10.0.6, <= 10.0.6
>= 21.0.0-beta, < 21.0.0
MEDIUM5.4CVE-2023-5323Cross-site Scripting (XSS) - Generic in dolibarr/dolibarr from 0, < 18.0.0
MEDIUM5.4CVE-2022-2060Cross-site Scripting (XSS) - Stored in dolibarr/dolibarr from 0, < 16.0.0
MEDIUM5.4CVE-2020-13828Dolibarr stored Cross-Site Scripting (XSS) vulnerability >= 11.0.4, <= 11.0.4
MEDIUM5.4CVE-2020-13239Dolibarr Stored Cross-site Scripting via file upload >= 11.0.4, <= 11.0.4
>= 11.0.4, <= 11.0.4
MEDIUM5.4CVE-2020-11823Dolibarr stored Cross-site Scripting vulnerability >= 10.0.6, <= 10.0.6
MEDIUM5.4CVE-2020-9016Dolibarr ERP and CRM contain XSS Vulnerability >= 11.0.0, <= 11.0.0
>= 7.0.2, <= 7.0.2
MEDIUM4.8CVE-2023-5842Cross-site Scripting (XSS) - Stored in dolibarr/dolibarr from 0, < 16.0.5
MEDIUM4.3CVE-2021-3991Improper Authorization in dolibarr/dolibarr from 0, < 20.0.2
from 0, < 16.0.0
MEDIUM4.3CVE-2022-0414Improper Validation of Specified Quantity in Input in dolibarr/dolibarr from 0, < 16.0.0
MEDIUM4.3CVE-2022-0174Improper Validation of Specified Quantity in Input in dolibarr/dolibarr from 0, < 15.0.0