Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2007-1540
HistoryMar 20, 2007 - 10:19 p.m.

CVE-2007-1540

2007-03-2022:19:00
Debian Security Bug Tracker
security-tracker.debian.org
7

0.021 Low

EPSS

Percentile

89.1%

JSON

Directory traversal vulnerability in am.pl in (1) SQL-Ledger 2.6.27 and earlier, and (2) LedgerSMB before 1.2.0, allows remote attackers to run arbitrary executables and bypass authentication via a … (dot dot) sequence and trailing NULL (%00) in the login parameter. NOTE: this issue was reportedly addressed in SQL-Ledger 2.6.27, however third-party researchers claim that the file is still executed even though an error is generated.

Related

ubuntucve 1
prion 1
cve 1
cvelist 1
securityvulns 1
ubuntucve
ubuntucve
CVE-2007-1540
2007-03-20 00:00:00
prion
prion
Directory traversal
2007-03-20 22:19:00
cve
cve
CVE-2007-1540
2007-03-20 22:19:00
cvelist
cvelist
CVE-2007-1540
2007-03-20 22:00:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2007-03-19 00:00:00

0.021 Low

EPSS

Percentile

89.1%

JSON
Related for DEBIANCVE:CVE-2007-1540
ubuntucve1prion1cve1cvelist1securityvulns1