Candidate: CVE-2012-1225
PublicDate: 2012-02-21 13:31:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1225
Description:
 Multiple SQL injection vulnerabilities in Dolibarr CMS 3.2.0 Alpha and
 earlier allow remote authenticated users to execute arbitrary SQL commands
 via the (1) memberslist parameter (aka Member List) in list.php or (2)
 rowid parameter to adherents/fiche.php.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:


Patches_dolibarr:
upstream_dolibarr: released (3.3.4-1)
precise/esm_dolibarr: DNE
trusty_dolibarr: ignored (out of standard support)
trusty/esm_dolibarr: DNE
xenial_dolibarr: not-affected (3.5.8+dfsg1-1ubuntu1)
bionic_dolibarr: DNE
focal_dolibarr: DNE
devel_dolibarr: DNE