CVE-2021-3731
LedgerSMB does not sufficiently guard against being wrapped by other sites, making it vulnerable to ‘clickjacking’. This allows an attacker to trick a targetted user to execute unintended actions.
Date published : 2021-08-23
https://huntr.dev/bounties/5664331d-f5f8-4412-8566-408f8655888a