SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2022-3450 | SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter. |
![]() |
GHSA-9v7m-f3cv-68rw | Dolibarr SQL injection vulnerability in comm/multiprix.php |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T21:06:49.380Z
Reserved: 2017-12-24T00:00:00
Link: CVE-2017-17897

No data.

Status : Deferred
Published: 2017-12-27T17:08:21.890
Modified: 2025-04-20T01:37:25.860
Link: CVE-2017-17897

No data.

No data.