CVE-2018-14887

Published June 28th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

5.8

MEDIUM

Affected

PROJECT

Description

Improper Host header sanitization in the dbfilter routing component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows a remote attacker to deny access to the service and to disclose database names via a crafted request.

odoo/odoo

Odoo. Open Source Apps To Grow Your Business.

GitHub

52.4K