CVE-2006-4731

EPSS 16.4%

Published: 9/13/2006Modified: 4/28/2026

Description

Multiple directory traversal vulnerabilities in (1) login.pl and (2) admin.pl in (a) SQL-Ledger before 2.6.19 and (b) LedgerSMB before 1.0.0p1 allow remote attackers to execute arbitrary Perl code via an unspecified terminal parameter value containing ../ (dot dot slash).

Affected packages (1)

Debian/sql-ledgerfrom 0, < 2.6.19-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-4731