7 matches found
Ubuntu: Security Advisory (USN-5097-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5097-1: LedgerSMB vulnerabilities
It was discovered that LedgerSMB incorrectly handled certain inputs. An attacker could use this to leak sensitive information, cause a DoS, or execute arbitrary code. CVE-2021-3693, CVE-2021-3694, CVE-2021-3731...
Debian DSA-4962-1 : ledgersmb - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-4962 advisory. Several vulnerabilities were discovered in LedgerSMB, a financial accounting and ERP program, which could result in cross-site scripting or clickjacking. For the...
[SECURITY] [DSA 4962-1] ledgersmb security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4962-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 23, 2021 https://www.debian.org/security/faq -...
CVE-2021-3731
creationtimestamp| type| source ---|---|--- 2021-08-23 16:23:01+00:00| seen| https://t.me/cibsecurity/27686...
CVE-2021-3731
LedgerSMB does not sufficiently guard against being wrapped by other sites, making it vulnerable to 'clickjacking'. This allows an attacker to trick a targetted user to execute unintended actions...
CVE-2021-3731
CVE-2021-3731 affects LedgerSMB with clickjacking risk where an attacker could trick a user into performing unintended actions via wrapping. Connected advisories corroborate cross-site scripting/clickjacking exposure and related input handling weaknesses across multiple distros (Debian, Ubuntu); ...