CNNVD-202602-2121 Information

CNNVD ID

CNNVD-202602-2121

Related CVE

CVE-2025-69634

• CNNVD Published: 2026-02-12

Description (Chinese)

Dolibarr ERP & CRM是Dolibarr开源的一个企业管理软件。 Dolibarr ERP & CRM 22.0.9版本存在安全漏洞，该漏洞源于perms.php中的notes字段存在跨站请求伪造，可能导致远程攻击者权限提升。

Description (English)

Dolibar ERP & CRM is an enterprise management software from Dolibar Open Source. Version 22.9 of Dolibarr ERP & CRM contains a security loophole, which originates from the cross-site forgery of the Notes field in Perms.php, which may lead to an increase in long-range attackers’ authority.

Vulnerability Type

其他

Affected Vendor

Dolibarr

Published

2026-02-12

Last Modified

2026-02-24

References

https://github.com/simone97212/vuln-research/tree/main/CVE-2025-69634 https://github.com/simone97212/DolibarrVuln https://access.redhat.com/security/cve/cve-2025-69634