Multiple SQL injection vulnerabilities in LedgerSMB (LSMB) 1.1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via unspecified vectors in (1) OE.pm, (2) AM.pm, and (3) Form.pm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ledgersmb ledgersmb 1.0.0 |
||
ledgersmb ledgersmb |