CVE-2006-4798
Publication date 14 September 2006
Last updated 24 July 2024
Ubuntu priority
SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.