First published: Mon Jan 27 2025(Updated: )
A cross-site scripting (XSS) vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
composer/dolibarr/dolibarr | =21.0.0-beta | |
Dolibarr ERP & CRM | =21.0.0-beta | |
Dolibarr |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-55227 has a medium severity rating due to its potential for cross-site scripting attacks.
To fix CVE-2024-55227, update Dolibarr to the latest version that addresses this vulnerability.
CVE-2024-55227 affects Dolibarr version 21.0.0-beta.
CVE-2024-55227 is classified as a cross-site scripting (XSS) vulnerability.
The potential dangers of CVE-2024-55227 include unauthorized script execution and possible data theft.