Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-23831

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LedgerSMB is a free web-based double-entry accounting system. When a LedgerSMB database administrator has an active session in /setup.pl, an attacker can trick...

7.5CVSS6.3AI score0.00274EPSS
Exploits0References2
OSV
OSV
added 2021/08/23 1:15 p.m.4 views

UBUNTU-CVE-2021-3693

LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure...

9.6CVSS7.2AI score0.03014EPSS
Exploits0References6
CNVD
CNVD
added 2018/06/08 12:0 a.m.6 views

PGObject::Util::DBAdmin shell code injection vulnerability

LedgerSMB is an open source ERP, financial management system written and maintained by software developer Dieter Simader. The system is a branch of SQL-Ledger financial management software.PGObject::Util::DBAdmin is one of the modules used to manage PGObject. A security vulnerability exists in...

9.8CVSS9.3AI score0.02581EPSS
Exploits0References1
OSV
OSV
added 2008/09/15 3:14 p.m.3 views

DEBIAN-CVE-2008-4077

The CGI scripts in 1 LedgerSMB LSMB before 1.2.15 and 2 SQL-Ledger 2.8.17 and earlier allow remote attackers to cause a denial of service resource exhaustion via an HTTP POST request with a large Content-Length...

7.8CVSS6.8AI score0.02831EPSS
Exploits0References1
Rows per page
Query Builder