Vulnerability Details CVE-2020-35136
Dolibarr 12.0.3 is vulnerable to authenticated Remote Code Execution. An attacker who has the access the admin dashboard can manipulate the backup function by inserting a payload into the filename for the zipfilename_template parameter to admin/tools/dolibarr_export.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.08
EPSS Ranking 91.7%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 9.0
References
- http://bilishim.com/2020/12/18/zero-hunting-2.html
- https://github.com/Dolibarr/dolibarr/commit/4fcd3fe49332baab0e424225ad10b76b47ebcbac
- https://github.com/Dolibarr/dolibarr/releases
- https://sourceforge.net/projects/dolibarr/
- http://bilishim.com/2020/12/18/zero-hunting-2.html
- https://github.com/Dolibarr/dolibarr/commit/4fcd3fe49332baab0e424225ad10b76b47ebcbac
- https://github.com/Dolibarr/dolibarr/releases
- https://sourceforge.net/projects/dolibarr/
Products affected by CVE-2020-35136
-
cpe:2.3:a:dolibarr:dolibarr_erp/crm:12.0.3