dolibarr/dolibarr vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2018-25357Criticaldolibarr/dolibarr: Dolibarr ERP CRM contains a remote code evaluation vulnerabilityCVE-2026-7689Lowdolibarr/dolibarr: Dolibarr has Insufficient Verification of Data Authenticity CVE-2026-7688Lowdolibarr/dolibarr: Dolibarr has an Injection issueCVE-2026-31019Highdolibarr/dolibarr: Dolibarr user with permission to edit PHP content can bypass filtering to restrict dangerous PHP…CVE-2026-31018Highdolibarr/dolibarr: Dolibarr Allows Code Injection through its Website ModuleCVE-2026-23500Criticaldolibarr/dolibarr: Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configurationCVE-2019-25710Highdolibarr/dolibarr: Dolibarr has SQL injection vulnerability in the rowid parameter of the admin dict.phpCVE-2026-34036Mediumdolibarr/dolibarr: Dolibarr Core Discloses Sensitive Data via Authenticated Local File Inclusion in selectobject.php CVE-2025-56588Highdolibarr/dolibarr: Dolibarr vulnerable to RCE via the computed field parameterGHSA-49XW-HW94-FMV2Highdolibarr/dolibarr: Dolibarr has Remote Code Execution Vulnerability (Bypass)CVE-2024-55228Lowdolibarr/dolibarr: Dolibarr Cross-site Scripting vulnerabilityCVE-2024-55227Lowdolibarr/dolibarr: Dolibarr Cross-site Scripting vulnerabilityCVE-2021-3991Mediumdolibarr/dolibarr: Improper Authorization in dolibarr/dolibarrCVE-2024-40137Highdolibarr/dolibarr: Dolibarr ERP CRM vulnerable to remote code execution (RCE) CVE-2024-37821Highdolibarr/dolibarr: Dolibarr arbitrary file upload vulnerabilityCVE-2024-34051Mediumdolibarr/dolibarr: Reflected Cross-Site Scripting (XSS) in DolibarrCVE-2024-5315Criticaldolibarr/dolibarr: Dolibarr vulnerable to SQL InjectionCVE-2024-5314Criticaldolibarr/dolibarr: Dolibarr vulnerable to SQL InjectionCVE-2024-23817Highdolibarr/dolibarr: Dolibarr Application Home Page has HTML injection vulnerabilityCVE-2024-31503Highdolibarr/dolibarr: Dolibarr vulnerable to Cross-Site Request ForgeryCVE-2024-29477Mediumdolibarr/dolibarr: Dolibarr ERP CRM Code Injection vulnerability during installationCVE-2023-4198Mediumdolibarr/dolibarr: Dolibarr Improper Input Validation vulnerabilityCVE-2023-4197Highdolibarr/dolibarr: Dolibarr Improper Input Validation vulnerabilityCVE-2023-5842Mediumdolibarr/dolibarr: Cross-site Scripting (XSS) in dolibarr/dolibarrCVE-2023-5323Mediumdolibarr/dolibarr: Dolibarr Cross-site Scripting vulnerability

Stop the waste.
Protect your environment with Kodem.