Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ledgersmb ledgersmb vulnerabilities and exploits

(subscribe to this query)

10
CVSSv2
CVE-2007-3907
Unspecified vulnerability in login.pl in LedgerSMB 1.2.0 through 1.2.6 allows remote attackers to bypass authentication and perform certain actions as an arbitrary user via unspecified vectors involving a URL with a redirect parameter value, along with a callback parameter...
Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.0Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5
7.5
CVSSv2
CVE-2006-5589
Multiple SQL injection vulnerabilities in LedgerSMB (LSMB) 1.1.0 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors in (1) OE.pm, (2) AM.pm, and (3) Form.pm....
Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb
9
CVSSv2
CVE-2007-1437
Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from...
Ledgersmb Ledgersmb 1.0.0Sql-ledger Sql-ledgerLedgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1
4.3
CVSSv2
CVE-2007-1540
Directory traversal vulnerability in am.pl in (1) SQL-Ledger 2.6.27 and earlier, and (2) LedgerSMB before 1.2.0, allows remote attackers to run arbitrary executables and bypass authentication via a .. (dot dot) sequence and trailing NULL (%00) in the login parameter. NOTE: this...
Sql-ledger Sql-ledgerLedgersmb Ledgersmb
10
CVSSv2
CVE-2007-1329
Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before 1.1.5, allows remote attackers to read and overwrite arbitrary files, and execute arbitrary code, via . (dot) characters adjacent to (1) users and (2) users/members strings, which are removed by blacklisting...
Sql-ledger Sql-ledger 2.6.25Ledgersmb Ledgersmb
7.5
CVSSv2
CVE-2007-1923
(1) LedgerSMB and (2) DWS Systems SQL-Ledger implement access control lists by changing the set of URLs linked from menus, which allows remote attackers to access restricted functionality via direct requests....
Dws Systems Inc. Sql-ledgerLedgersmb Ledgersmb
7.5
CVSSv2
CVE-2018-9246
The PGObject::Util::DBAdmin module before 0.120.0 for Perl, as used in LedgerSMB through 1.5.x, insufficiently sanitizes or escapes variable values used as part of shell command execution, resulting in shell code injection via the create(), run_file(), backup(), or restore()...
Pgobject-util-dbadmin Project Pgobject-util-dbadminLedgersmb Ledgersmb
10
CVSSv2
CVE-2007-5372
Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through 1.2.7 and (b) DWS Systems SQL-Ledger 2.x allow remote attackers to execute arbitrary SQL commands via (1) the invoice quantity field or (2) the sort field....
Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Dws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.27Dws Systems Inc. Sql-ledger 2.6.3Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7
7.8
CVSSv2
CVE-2008-4077
The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allow remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a large Content-Length....
Ledgersmb Ledgersmb 1.2.10Ledgersmb Ledgersmb 1.2.8Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.0Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.8.3Sql-ledger Sql-ledger 2.8.4Dws Systems Inc. Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.6Ledgersmb Ledgersmb 1.2.3Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledgerSql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.8.11Ledgersmb Ledgersmb 1.2.9Dws Systems Inc. Sql-ledger 2.4.3Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.8.12Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.2.7Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.13Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.6.11Ledgersmb LedgersmbDws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.8.16Ledgersmb Ledgersmb 1.2.12Dws Systems Inc. Sql-ledger 2.6.3Ledgersmb Ledgersmb 1.1.5Dws Systems Inc. Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.8.13Dws Systems Inc. Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.8.5Dws Systems Inc. Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.8.14Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledgerDws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.4.1Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.25Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.18Ledgersmb Ledgersmb 1.1.8Sql-ledger Sql-ledger 2.6.26Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.6.10Ledgersmb Ledgersmb 1.2.4Dws Systems Inc. Sql-ledger 2.6.27Dws Systems Inc. Sql-ledger 2.2.2Sql-ledger Sql-ledger 2.8.0Ledgersmb Ledgersmb 1.1.1Dws Systems Inc. Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.6.24Sql-ledger Sql-ledger 2.8.15Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.8.6Sql-ledger Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.8.10Dws Systems Inc. Sql-ledger 2.4.7Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.2.7Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.5Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.1Ledgersmb Ledgersmb 1.0.0Dws Systems Inc. Sql-ledger 2.6.16Ledgersmb Ledgersmb 1.2.2Dws Systems Inc. Sql-ledger 2.2.0Sql-ledger Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.8.2Dws Systems Inc. Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.2.4Sql-ledger Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.6.21Dws Systems Inc. Sql-ledger 2.4.2Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.2
6.5
CVSSv2
CVE-2008-4078
SQL injection vulnerability in the AR/AP transaction report in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors....
Ledgersmb Ledgersmb 1.2.7Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.2.2Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.8.2Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.8.10Sql-ledger Sql-ledger 2.6.16Ledgersmb LedgersmbDws Systems Inc. Sql-ledger 2.6.12Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.1.5Dws Systems Inc. Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.8.5Sql-ledger Sql-ledger 2.8.14Ledgersmb Ledgersmb 1.2.6Sql-ledger Sql-ledger 2.6.25Ledgersmb Ledgersmb 1.2.8Sql-ledger Sql-ledger 2.6.18Ledgersmb Ledgersmb 1.2.9Ledgersmb Ledgersmb 1.1.8Sql-ledger Sql-ledger 2.6.26Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.4Dws Systems Inc. Sql-ledger 2.6.17Ledgersmb Ledgersmb 1.2.10Sql-ledger Sql-ledger 2.8.15Sql-ledger Sql-ledger 2.8.6Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.13Dws Systems Inc. Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.11Ledgersmb Ledgersmb 1.1.0Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.8.16Ledgersmb Ledgersmb 1.2.12Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.8.4Sql-ledger Sql-ledger 2.8.13Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledgerDws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.4.1Sql-ledger Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledgerSql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.8.11Dws Systems Inc. Sql-ledger 2.4.3Ledgersmb Ledgersmb 1.2.0Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.8.12Sql-ledger Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.4.0Sql-ledger Sql-ledger 2.8.0Sql-ledger Sql-ledger 2.8.3Ledgersmb Ledgersmb 1.1.1Sql-ledger Sql-ledger 2.6.24Dws Systems Inc. Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.5Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.2.4Sql-ledger Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.6.27Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.2Sql-ledger Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.2.2Sql-ledger Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-33742CVE-2021-33739CVE-2021-0492injectionCVE-2017-1079validationCVE-2021-22906denial of serviceCVE-2021-22912
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook