VYPR
Unrated severityNVD Advisory· Published Mar 13, 2007· Updated Jun 16, 2026

CVE-2007-1437

CVE-2007-1437

Description

Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:ledgersmb:ledgersmb:1.0.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ledgersmb:ledgersmb:1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ledgersmb:ledgersmb:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ledgersmb:ledgersmb:1.1.1:*:*:*:*:*:*:*
    • (no CPE)range: <1.1.5
  • cpe:2.3:a:sql-ledger:sql-ledger:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sql-ledger:sql-ledger:*:*:*:*:*:*:*:*range: <=2.6.24
    • (no CPE)range: <2.6.25

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.