Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ledgersmb ledgersmb 1.1.5 vulnerabilities and exploits

(subscribe to this query)

9
CVSSv2
CVE-2007-1437
Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from...
Ledgersmb Ledgersmb 1.0.0Sql-ledger Sql-ledgerLedgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1
10
CVSSv2
CVE-2007-1329
Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before 1.1.5, allows remote attackers to read and overwrite arbitrary files, and execute arbitrary code, via . (dot) characters adjacent to (1) users and (2) users/members strings, which are removed by blacklisting...
Sql-ledger Sql-ledger 2.6.25Ledgersmb Ledgersmb
10
CVSSv2
CVE-2007-5372
Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through 1.2.7 and (b) DWS Systems SQL-Ledger 2.x allow remote attackers to execute arbitrary SQL commands via (1) the invoice quantity field or (2) the sort field....
Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Dws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.27Dws Systems Inc. Sql-ledger 2.6.3Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7
6.5
CVSSv2
CVE-2007-0667
The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2) SQL-Ledger allows remote authenticated users to execute arbitrary code via redirects, related to callbacks, a different issue than CVE-2006-5872....
Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.25Ledgersmb LedgersmbSql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.4.7
7.5
CVSSv2
CVE-2007-1436
Unspecified vulnerability in admin.pl in SQL-Ledger before 2.6.26 and LedgerSMB before 1.1.9 allows remote attackers to bypass authentication via unknown vectors that prevents a password check from occurring....
Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.2Sql-ledger Sql-ledger 2.6.21Ledgersmb LedgersmbSql-ledger Sql-ledgerSql-ledger Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.4.9Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.5Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Sql-ledger Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.9Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.6Sql-ledger Sql-ledger 2.6.7
7.8
CVSSv2
CVE-2008-4077
The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allow remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a large Content-Length....
Ledgersmb Ledgersmb 1.2.10Ledgersmb Ledgersmb 1.2.8Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.0Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.8.3Sql-ledger Sql-ledger 2.8.4Dws Systems Inc. Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.6Ledgersmb Ledgersmb 1.2.3Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledgerSql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.8.11Ledgersmb Ledgersmb 1.2.9Dws Systems Inc. Sql-ledger 2.4.3Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.8.12Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.2.7Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.13Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.6.11Ledgersmb LedgersmbDws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.8.16Ledgersmb Ledgersmb 1.2.12Dws Systems Inc. Sql-ledger 2.6.3Ledgersmb Ledgersmb 1.1.5Dws Systems Inc. Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.8.13Dws Systems Inc. Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.8.5Dws Systems Inc. Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.8.14Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledgerDws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.4.1Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.25Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.18Ledgersmb Ledgersmb 1.1.8Sql-ledger Sql-ledger 2.6.26Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.6.10Ledgersmb Ledgersmb 1.2.4Dws Systems Inc. Sql-ledger 2.6.27Dws Systems Inc. Sql-ledger 2.2.2Sql-ledger Sql-ledger 2.8.0Ledgersmb Ledgersmb 1.1.1Dws Systems Inc. Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.6.24Sql-ledger Sql-ledger 2.8.15Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.8.6Sql-ledger Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.8.10Dws Systems Inc. Sql-ledger 2.4.7Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.2.7Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.5Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.1Ledgersmb Ledgersmb 1.0.0Dws Systems Inc. Sql-ledger 2.6.16Ledgersmb Ledgersmb 1.2.2Dws Systems Inc. Sql-ledger 2.2.0Sql-ledger Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.8.2Dws Systems Inc. Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.2.4Sql-ledger Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.6.21Dws Systems Inc. Sql-ledger 2.4.2Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.2
6.5
CVSSv2
CVE-2008-4078
SQL injection vulnerability in the AR/AP transaction report in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors....
Ledgersmb Ledgersmb 1.2.7Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.2.2Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.8.2Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.8.10Sql-ledger Sql-ledger 2.6.16Ledgersmb LedgersmbDws Systems Inc. Sql-ledger 2.6.12Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.1.5Dws Systems Inc. Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.8.5Sql-ledger Sql-ledger 2.8.14Ledgersmb Ledgersmb 1.2.6Sql-ledger Sql-ledger 2.6.25Ledgersmb Ledgersmb 1.2.8Sql-ledger Sql-ledger 2.6.18Ledgersmb Ledgersmb 1.2.9Ledgersmb Ledgersmb 1.1.8Sql-ledger Sql-ledger 2.6.26Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.4Dws Systems Inc. Sql-ledger 2.6.17Ledgersmb Ledgersmb 1.2.10Sql-ledger Sql-ledger 2.8.15Sql-ledger Sql-ledger 2.8.6Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.13Dws Systems Inc. Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.11Ledgersmb Ledgersmb 1.1.0Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.8.16Ledgersmb Ledgersmb 1.2.12Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.8.4Sql-ledger Sql-ledger 2.8.13Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledgerDws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.4.1Sql-ledger Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledgerSql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.8.11Dws Systems Inc. Sql-ledger 2.4.3Ledgersmb Ledgersmb 1.2.0Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.8.12Sql-ledger Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.4.0Sql-ledger Sql-ledger 2.8.0Sql-ledger Sql-ledger 2.8.3Ledgersmb Ledgersmb 1.1.1Sql-ledger Sql-ledger 2.6.24Dws Systems Inc. Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.5Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.2.4Sql-ledger Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.6.27Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.2Sql-ledger Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.2.2Sql-ledger Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.2
7.5
CVSSv2
CVE-2006-5872
login.pl in SQL-Ledger before 2.6.21 and LedgerSMB before 1.1.5 allows remote attackers to execute arbitrary Perl code via the "-e" flag in the script parameter, which is used as an argument to the perl program....
Dws Systems Inc. Sql-ledger 2.6.27
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-36239CVE-2020-21806CVE-2021-31878arbitrary IDORCVE-2020-18158CVE-2021-3490remote code executionCVE-2021-20786
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook