Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ledgersmb ledgersmb 1.0.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-5589
Multiple SQL injection vulnerabilities in LedgerSMB (LSMB) 1.1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via unspecified vectors in (1) OE.pm, (2) AM.pm, and (3) Form.pm.
Ledgersmb Ledgersmb 1.0.0
Ledgersmb Ledgersmb
9
CVSSv2
CVE-2007-1437
Unspecified vulnerability in LedgerSMB prior to 1.1.5 and SQL-Ledger prior to 2.6.25 allows remote malicious users to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns f...
Ledgersmb Ledgersmb 1.0.0
Sql-ledger Sql-ledger
Ledgersmb Ledgersmb 1.1.0
Ledgersmb Ledgersmb 1.1.1
10
CVSSv2
CVE-2007-5372
Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 up to and including 1.2.7 and (b) DWS Systems SQL-Ledger 2.x allow remote malicious users to execute arbitrary SQL commands via (1) the invoice quantity field or (2) the sort field.
Dws Systems Inc. Sql-ledger 2.2.7
Dws Systems Inc. Sql-ledger 2.4.0
Dws Systems Inc. Sql-ledger 2.4.15
Dws Systems Inc. Sql-ledger 2.4.16
Dws Systems Inc. Sql-ledger 2.4.8
Dws Systems Inc. Sql-ledger 2.4.9
Dws Systems Inc. Sql-ledger 2.6.16
Dws Systems Inc. Sql-ledger 2.6.17
Dws Systems Inc. Sql-ledger 2.6.6
Dws Systems Inc. Sql-ledger 2.6.7
Ledgersmb Ledgersmb 1.1.8
Ledgersmb Ledgersmb 1.2.0
Dws Systems Inc. Sql-ledger 2.2.0
Dws Systems Inc. Sql-ledger 2.2.1
Dws Systems Inc. Sql-ledger 2.4.1
Dws Systems Inc. Sql-ledger 2.4.10
Dws Systems Inc. Sql-ledger 2.4.2
Dws Systems Inc. Sql-ledger 2.4.3
Dws Systems Inc. Sql-ledger 2.6.1
Dws Systems Inc. Sql-ledger 2.6.10
Dws Systems Inc. Sql-ledger 2.6.18
Dws Systems Inc. Sql-ledger 2.6.2
7.5
CVSSv2
CVE-2007-1436
Unspecified vulnerability in admin.pl in SQL-Ledger prior to 2.6.26 and LedgerSMB prior to 1.1.9 allows remote malicious users to bypass authentication via unknown vectors that prevents a password check from occurring.
Sql-ledger Sql-ledger 2.4.10
Sql-ledger Sql-ledger 2.4.11
Sql-ledger Sql-ledger 2.4.6
Sql-ledger Sql-ledger 2.4.7
Sql-ledger Sql-ledger 2.6.12
Sql-ledger Sql-ledger 2.6.13
Sql-ledger Sql-ledger 2.6.2
Sql-ledger Sql-ledger 2.6.21
Ledgersmb Ledgersmb
Sql-ledger Sql-ledger
Sql-ledger Sql-ledger 2.4.12
Sql-ledger Sql-ledger 2.4.13
Sql-ledger Sql-ledger 2.4.8
Sql-ledger Sql-ledger 2.4.9
Sql-ledger Sql-ledger 2.6.14
Sql-ledger Sql-ledger 2.6.15
Sql-ledger Sql-ledger 2.6.3
Sql-ledger Sql-ledger 2.6.4
Sql-ledger Sql-ledger 2.6.5
Ledgersmb Ledgersmb 1.1.1
Ledgersmb Ledgersmb 1.1.5
Sql-ledger Sql-ledger 2.4.4
7.5
CVSSv2
CVE-2006-4244
SQL-Ledger 2.4.4 up to and including 2.6.17 authenticates users by verifying that the value of the sql-ledger-[username] cookie matches the value of the sessionid parameter, which allows remote malicious users to gain access as any logged-in user by setting the cookie and the par...
Sql-ledger Sql-ledger 2.6.16
Sql-ledger Sql-ledger 2.4.5
Sql-ledger Sql-ledger 2.6.6
Sql-ledger Sql-ledger 2.6.11
Sql-ledger Sql-ledger 2.4.7
Sql-ledger Sql-ledger 2.6.1
Sql-ledger Sql-ledger 2.6.15
Sql-ledger Sql-ledger 2.4.8
Sql-ledger Sql-ledger 2.6.9
Sql-ledger Sql-ledger 2.6.0
Sql-ledger Sql-ledger 2.6.12
Sql-ledger Sql-ledger 2.6.3
Sql-ledger Sql-ledger 2.4.9
Sql-ledger Sql-ledger 2.6.17
Sql-ledger Sql-ledger 2.4.4
Sql-ledger Sql-ledger 2.6.14
Sql-ledger Sql-ledger 2.4.6
Sql-ledger Sql-ledger 2.4.10
Sql-ledger Sql-ledger 2.4.13
Sql-ledger Sql-ledger 2.6.4
Sql-ledger Sql-ledger 2.4.16
Sql-ledger Sql-ledger 2.6.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started