vulnerability

Ubuntu: (CVE-2020-14201): dolibarr vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:P/A:N)	Aug 21, 2020	Jun 26, 2025	Jun 26, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:P/A:N)

Published

Aug 21, 2020

Added

Jun 26, 2025

Modified

Jun 26, 2025

Description

Dolibarr CRM before 11.0.5 allows privilege escalation. This could allow remote authenticated attackers to upload arbitrary files via societe/document.php in which "disabled" is changed to "enabled" in the HTML source code.

Solution

no-fix-ubuntu-package

References

CVE-2020-14201
https://attackerkb.com/topics/CVE-2020-14201
URL-https://github.com/Dolibarr/dolibarr/blob/develop/ChangeLog
URL-https://www.cve.org/CVERecord?id=CVE-2020-14201
URL-https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2020-011

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today