SQL-Ledger/LedgerSMB Insecure User Access Restriction Vulnerability

Bugtraq ID: 23352
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Apr 06 2007 12:00AM
Updated: Apr 09 2007 09:12PM
Credit: Chris Travers is credited with reporting this issue.
Vulnerable: SQL-Ledger SQL-Ledger 2.6.26
SQL-Ledger SQL-Ledger 2.6.25
SQL-Ledger SQL-Ledger 2.6.21
SQL-Ledger SQL-Ledger 2.6.19
SQL-Ledger SQL-Ledger 2.6.18
SQL-Ledger SQL-Ledger 2.6.17
SQL-Ledger SQL-Ledger 2.4.7
LedgerSMB LedgerSMB 1.2
LedgerSMB LedgerSMB 1.1.9
LedgerSMB LedgerSMB 1.1.8
LedgerSMB LedgerSMB 1.1.5
LedgerSMB LedgerSMB 1.1
LedgerSMB LedgerSMB 1.1
LedgerSMB LedgerSMB 1.0 p1
LedgerSMB LedgerSMB 1.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus