|
|
LedgerSMB/SQL-Ledger Login Parameter Local File Include And Authentication Bypass Vulnerabilities
|
Bugtraq ID:
|
23034
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Mar 19 2007 12:00AM
|
|
Updated:
|
Mar 20 2007 05:14PM
|
|
Credit:
|
Chris Travers is credited with discovering these vulnerabilities.
|
|
Vulnerable:
|
SQL-Ledger SQL-Ledger 2.6.26
SQL-Ledger SQL-Ledger 2.6.25
SQL-Ledger SQL-Ledger 2.6.21
SQL-Ledger SQL-Ledger 2.6.19
SQL-Ledger SQL-Ledger 2.6.18
SQL-Ledger SQL-Ledger 2.6.17
LedgerSMB LedgerSMB 1.1.9
LedgerSMB LedgerSMB 1.1.8
LedgerSMB LedgerSMB 1.1.5
LedgerSMB LedgerSMB 1.1
LedgerSMB LedgerSMB 1.1
LedgerSMB LedgerSMB 1.0 p1
LedgerSMB LedgerSMB 1.0
|
|
|
|
Not Vulnerable:
|
|
|
|
