Описание
The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2) SQL-Ledger allows remote authenticated users to execute arbitrary code via redirects, related to callbacks, a different issue than CVE-2006-5872.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | ignored | end of life |
| devel | DNE | |
| disco | DNE | |
| edgy | ignored | end of life, was needed |
| eoan | DNE | |
| esm-apps/xenial | ignored | see notes |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
Показывать по
EPSS
6.5 Medium
CVSS2
Связанные уязвимости
The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2) SQL-Ledger allows remote authenticated users to execute arbitrary code via redirects, related to callbacks, a different issue than CVE-2006-5872.
The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2 ...
The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2) SQL-Ledger allows remote authenticated users to execute arbitrary code via redirects, related to callbacks, a different issue than CVE-2006-5872.
EPSS
6.5 Medium
CVSS2