CVE-2007-0667 in SQL-Ledgerinfo

Summary

The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2) SQL-Ledger allows remote authenticated users to execute arbitrary code via redirects, related to callbacks, a different issue than CVE-2006-5872.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

02/02/2007

Disclosure

02/02/2007

Moderation

VulDB entry created

Entries

1: VDB-34788

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

6.3

EPSS

0.01831

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0667
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0667
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0667/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!