CVE-2007-3907
CVE-2007-3907 affects LedgerSMB 1.2.0–1.2.6. An authentication bypass allows remote attackers to perform actions as an arbitrary user via a crafted URL using a redirect parameter and a callback parameter containing an escaped URL. The exact vectors are not detailed in the provided documents. No p...