SQL injection vulnerability in the AR/AP transaction report in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T10:00:42.806Z

Reserved: 2008-09-15T00:00:00

Link: CVE-2008-4078

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2008-09-15T15:14:07.397

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-4078

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.