CVE-2024-31503 – Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and before, allows …

17 April 2024

Vuln ID: CVE-2024-31503

Published: 2024-04-17 00:15:07.220

Description: Incorrect access control in Dolibarr ERP CRM versions 19.0.0 and before, allows authenticated attackers to steal victim users’ session cookies and CSRF protection tokens via user interaction with a crafted web page, leading to account takeover.

Base Score: –

Vector:

Source: NVD.NIST.GOV

Date:

17 April 2024

Categorie(s):

NVD

Tag(s):

NVD

Earth Day: The surprising connection of cybersecurity and sustainability30 April 2024
F5 shares fall over 9% on disappointing earnings outlook30 April 2024
AT&T, Verizon, Sprint, T-Mobile US fined $200M for selling off people’s location info29 April 2024
Board’s Pivotal Role in Cybersecurity as CISO-CEO Communication Gaps Continue – BSW #34829 April 2024
Meet Silver SAML: Golden SAML in the Cloud – Eric Woodruff – BSW #34829 April 2024