Arbitrary Code Execution Vulnerability in Dolibarr ERP/CRM 5.0.3 and Prior

Arbitrary Code Execution Vulnerability in Dolibarr ERP/CRM 5.0.3 and Prior

CVE-2017-9840 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Dolibarr ERP/CRM 5.0.3 and prior allows low-privilege users to upload files of dangerous types, which can result in arbitrary code execution within the context of the vulnerable application.

Learn more about our Crm Penetration Testing.