Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2006-4798

Published: 14 September 2006

SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.

Priority

Unknown

Status

Package Release Status
sql-ledger
Launchpad, Ubuntu, Debian
dapper
Released (2.4.5-1)
edgy
Released (2.4.5-1)
feisty
Released (2.4.5-1)
gutsy
Released (2.4.5-1)
upstream
Released (2.4.4)
hardy
Released (2.4.5-1)