CVE-2026-23500Dolibarr · Dolibarr_erp\/crm
Vulnerability data via NVD (ingested)
Dolibarr is an enterprise resource planning (ERP) and customer relationship management (CRM) software package. In versions prior to 23.0.0 , the ODT to PDF conversion process in odf.php concatenates the MAIN_ODT_AS_PDF configuration constant directly into a shell command passed to exec() without sanitization. An authenticated administrator can inject arbitrary OS commands via this constant using command separators, achieving remote code execution as the web server user when any ODT template is generated. This issue has been fixed in version 23.0.0.
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
vuln:CVE-2026-23500product:"Dolibarr Dolibarr Erp\/crm"http.html:"Dolibarr Erp\/crm"More intel sources (5)
vuln:CVE-2026-23500vulnerabilities.cve_id: CVE-2026-23500CVE-2026-23500CVE-2026-23500"CVE-2026-23500" exploit -site:nvd.nist.gov