SQL Injection Vulnerability in Dolibarr ERP/CRM (versions prior to 5.0.4) via product/stats/card.php (type parameter)
CVE-2017-9839 · MEDIUM Severity
AV:N/AC:L/AU:S/C:P/I:P/A:P
Dolibarr ERP/CRM is affected by SQL injection in versions before 5.0.4 via product/stats/card.php (type parameter).
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.