CVE-2007-0667

Name of the Vulnerable Software and Affected Versions LedgerSMB versions prior to 1.1.5 SQL-Ledger (affected versions not specified)

Description The issue is related to the redirect function in Form.pm, which allows remote authenticated users to execute arbitrary code via redirects. This is related to callbacks.

Recommendations For LedgerSMB versions prior to 1.1.5, update to version 1.1.5 or later to resolve the issue. For SQL-Ledger, at the moment, there is no information about a newer version that contains a fix for this vulnerability.