Back to CVE Browser

CVE-2007-1329

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0110%

EPSS Percentile38.64th

PublishedMar 7, 2007

Last ModifiedApr 23, 2026

Vulnerability Description

Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before 1.1.5, allows remote attackers to read and overwrite arbitrary files, and execute arbitrary code, via . (dot) characters adjacent to (1) users and (2) users/members strings, which are removed by blacklisting functions that filter these strings and collapse into .. (dot dot) sequences.

Affected Platforms (CPE)

📦

Ledgersmb

Ledgersmb

<= 1.1.1

📦

Sql Ledger

Sql Ledger

= 2.6.25

References & Advisories

🔗 http://osvdb.org/33619

🔗 http://osvdb.org/33621

🔗 http://secunia.com/advisories/24363

🔗 http://secunia.com/advisories/24366

🔗 http://securityreason.com/securityalert/2381

🔗 http://securitytracker.com/id?1017715

🔗 http://www.securityfocus.com/archive/1/461630/100/0/threaded

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/32776

Related Vulnerabilities

CVE-2007-537210.0

Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through 1.2.7 and (b) DWS Systems SQL-Ledger 2.x allow remote attack...

CVE-2007-390710.0

Unspecified vulnerability in login.pl in LedgerSMB 1.2.0 through 1.2.6 allows remote attackers to bypass authentication and perfor...

CVE-2018-92469.8

The PGObject::Util::DBAdmin module before 0.120.0 for Perl, as used in LedgerSMB through 1.5.x, insufficiently sanitizes or escape...

CVE-2007-14379.0

Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and po...