Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ledgersmb ledgersmb 1.1.5 vulnerabilities and exploits

(subscribe to this query)

9
CVSSv2
CVE-2007-1437
Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from...
Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Sql-ledger Sql-ledger
10
CVSSv2
CVE-2007-1329
Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before 1.1.5, allows remote attackers to read and overwrite arbitrary files, and execute arbitrary code, via . (dot) characters adjacent to (1) users and (2) users/members strings, which are removed by blacklisting...
Ledgersmb LedgersmbSql-ledger Sql-ledger 2.6.25
10
CVSSv2
CVE-2007-5372
Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through 1.2.7 and (b) DWS Systems SQL-Ledger 2.x allow remote attackers to execute arbitrary SQL commands via (1) the invoice quantity field or (2) the sort field....
Dws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.27Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7
7.5
CVSSv2
CVE-2007-1436
Unspecified vulnerability in admin.pl in SQL-Ledger before 2.6.26 and LedgerSMB before 1.1.9 allows remote attackers to bypass authentication via unknown vectors that prevents a password check from occurring....
Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb LedgersmbSql-ledger Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.4.9Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.2Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.6.6Sql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger
6.5
CVSSv2
CVE-2008-4078
SQL injection vulnerability in the AR/AP transaction report in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors....
Dws Systems Inc. Sql-ledgerDws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.27Ledgersmb LedgersmbLedgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7Ledgersmb Ledgersmb 1.2.8Ledgersmb Ledgersmb 1.2.9Ledgersmb Ledgersmb 1.2.10Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.12Ledgersmb Ledgersmb 1.2.13Sql-ledger Sql-ledgerSql-ledger Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.4.9Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.2Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.6.6Sql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.6.24Sql-ledger Sql-ledger 2.6.25Sql-ledger Sql-ledger 2.6.26Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.8.0Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.8.2Sql-ledger Sql-ledger 2.8.3Sql-ledger Sql-ledger 2.8.4Sql-ledger Sql-ledger 2.8.5Sql-ledger Sql-ledger 2.8.6Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.8.10Sql-ledger Sql-ledger 2.8.11Sql-ledger Sql-ledger 2.8.12Sql-ledger Sql-ledger 2.8.13Sql-ledger Sql-ledger 2.8.14Sql-ledger Sql-ledger 2.8.15Sql-ledger Sql-ledger 2.8.16
7.8
CVSSv2
CVE-2008-4077
The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allow remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a large Content-Length....
Dws Systems Inc. Sql-ledgerDws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.27Ledgersmb LedgersmbLedgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7Ledgersmb Ledgersmb 1.2.8Ledgersmb Ledgersmb 1.2.9Ledgersmb Ledgersmb 1.2.10Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.12Ledgersmb Ledgersmb 1.2.13Sql-ledger Sql-ledgerSql-ledger Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.4.9Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.2Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.6.6Sql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.6.24Sql-ledger Sql-ledger 2.6.25Sql-ledger Sql-ledger 2.6.26Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.8.0Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.8.2Sql-ledger Sql-ledger 2.8.3Sql-ledger Sql-ledger 2.8.4Sql-ledger Sql-ledger 2.8.5Sql-ledger Sql-ledger 2.8.6Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.8.10Sql-ledger Sql-ledger 2.8.11Sql-ledger Sql-ledger 2.8.12Sql-ledger Sql-ledger 2.8.13Sql-ledger Sql-ledger 2.8.14Sql-ledger Sql-ledger 2.8.15Sql-ledger Sql-ledger 2.8.16
6.5
CVSSv2
CVE-2007-0667
The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2) SQL-Ledger allows remote authenticated users to execute arbitrary code via redirects, related to callbacks, a different issue than CVE-2006-5872....
Ledgersmb LedgersmbSql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.25
7.5
CVSSv2
CVE-2006-5872
login.pl in SQL-Ledger before 2.6.21 and LedgerSMB before 1.1.5 allows remote attackers to execute arbitrary Perl code via the "-e" flag in the script parameter, which is used as an argument to the perl program....
Dws Systems Inc. Sql-ledger 2.6.27
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2021-20661CVE-2020-4953CVE-2018-19518CVE-2021-27645CVE-2021-3156CVE-2021-26684deserializationwireless