SQL Injection Vulnerability in Dolibarr ERP/CRM (versions prior to 5.0.4) via product/stats/card.php (type parameter)

CVE-2017-9839 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Dolibarr ERP/CRM is affected by SQL injection in versions before 5.0.4 via product/stats/card.php (type parameter).

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.