2021-08-23 12:42:01
@huntrdev
PUBLISHED
LedgerSMB does not sufficiently guard against being wrapped by other sites, making it vulnerable to clickjacking. This allows an attacker to trick a targetted user to execute unintended actions.