{"id":"CVE-2007-1437","details":"Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger before 2.6.25 allows remote attackers to overwrite files and possibly bypass authentication, and remote authenticated users to execute unauthorized code, by calling a custom error function that returns from execution.","modified":"2026-04-10T03:38:44.860092Z","published":"2007-03-13T19:19:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/24363"},{"type":"ADVISORY","url":"http://secunia.com/advisories/24366"},{"type":"WEB","url":"http://securityreason.com/securityalert/2435"},{"type":"WEB","url":"http://www.securityfocus.com/archive/1/461944/100/100/threaded"}],"schema_version":"1.7.5"}