Last update: {{REVISIONYEAR}}-{{REVISIONMONTH}}-{{REVISIONDAY}}
Last update: {{REVISIONYEAR}}-{{REVISIONMONTH}}-{{REVISIONDAY}}
−
Some XSS holes have been reported. They are a small risk as they are in page that need to be loggued to be used to execute javascript with a forged url of your Dolibarr. So no fix will be provided until 3.0, available for end of year.
+
Some SQL injections vulnerabilities have been reported. They are a small risk as they are in page that need to be logged to be used. Fix is available into 7.0.