cpe:/a:dolibarr:dolibarr:8.0.2 CVE-2018-19994 2019-01-03T14:29:01.053-05:00 2019-01-09T08:12:11.573-05:00 6.5 NETWORK LOW SINGLE_INSTANCE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2019-01-08T15:48:33.620-05:00 MISC https://github.com/Dolibarr/dolibarr/commit/850b939ffd2c7a4443649331b923d5e0da2d6446 An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remote authenticated users to execute arbitrary SQL commands via the desiredstock parameter.