CVE-2025-69634 PUBLISHED

Assigner: mitre
Reserved: 09.01.2026 Published: 12.02.2026 Updated: 12.02.2026

Cross Site Request Forgery vulnerability in Dolibarr ERP & CRM v.22.0.9 allows a remote attacker to escalate privileges via the notes field in perms.php

Product Status

Vendor	n/a
Product	n/a
Versions	Version n/a is affected

References

https://github.com/simone97212/DolibarrVuln
https://github.com/simone97212/vuln-research/tree/main/CVE-2025-69634

Problem Types

n/a text