2 matches found
CVE-2008-6440
Cerberus Helpdesk before 4.0 Build 600 allows remote attackers to obtain sensitive information via direct requests for "controllers ... that aren't standard helpdesk pages," possibly involving the 1 /display and 2 /kb URIs...
CVE-2008-6440
Cerberus Helpdesk before 4.0 Build 600 is affected by an information-disclosure vulnerability: remote attackers may obtain sensitive data by directly requesting non-standard controllers, potentially exposing /display and /kb pages. Root cause: improper exposure via controllers not belonging to st...