Closed
Description
[*] Page affected
- dolibarr-3.7.0/htdocs/societe/societe.php
- dolibarr-3.7.0/htdocs/societe/admin/societe.php
[*] Fields affected
- Bussiness Search (search_nom)
[*] Poc
You only need to inject the script code in this field like a:
"> < img src='http://www.xxx.com >