CVE-2011-4802

Name of the Vulnerable Software and Affected Versions Dolibarr versions 3.1.0 RC and earlier

Description The issue allows remote authenticated users to execute arbitrary SQL commands. This can be achieved via several parameters in different PHP files, including sortfield, sortorder, and sall parameters to "user/index.php" and "user/group/index.php", the id parameter to "info.php", "perms.php", "param ihm.php", "note.php", and "fiche.php" in the "user/" directory, and the rowid parameter to "admin/boxes.php".

Recommendations For Dolibarr versions 3.1.0 RC and earlier, consider restricting access to the vulnerable parameters sortfield, sortorder, sall, id, and rowid in the affected PHP files until a patch is available. As a temporary workaround, limit the execution of arbitrary SQL commands by implementing input validation and sanitization for these parameters.