Cerberus Helpdesk Security Vulnerabilities and Issues — Cerberus Helpdesk CVE List

Lucene search

CerberusCerberus Helpdesk

4 matches found

CVE•added 2009/03/06 6:30 p.m.•45 views

CVE-2008-6440

Cerberus Helpdesk before 4.0 (Build 600) allows remote attackers to obtain sensitive information via direct requests for "controllers ... that aren't standard helpdesk pages," possibly involving the (1) /display and (2) /kb URIs.

5CVSS6.5AI score0.00282EPSS

CVE•added 2006/10/20 5:7 p.m.•44 views

CVE-2006-5428

rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive information (ticket data) via a direct request.

5CVSS6.3AI score0.04248EPSS

CVE•added 2005/11/05 11:2 a.m.•42 views

CVE-2005-3502

attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter.

5CVSS7AI score0.00619EPSS

CVE•added 2005/06/16 4:0 a.m.•34 views

CVE-2005-1963

Cerberus Helpdesk 0.97.3 allows remote attackers to obtain sensitive information via certain requests to (1) reports.php, (2) knowledgebase.php, or (3) configuration.php, which leaks the information in a PHP error message.

5CVSS6.7AI score0.0059EPSS