Cerberus Helpdesk Security Vulnerabilities and Issues — Cerberus Helpdesk CVE List

Lucene search

CerberusCerberus Helpdesk

3 matches found

CVE•added 2006/10/20 5:7 p.m.•44 views

CVE-2006-5428

rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive information (ticket data) via a direct request.

5CVSS6.3AI score0.04248EPSS

CVE•added 2006/02/01 11:2 p.m.•38 views

CVE-2006-0509

Multiple cross-site scripting (XSS) vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote attackers to inject arbitrary web script or HTML via (1) the contact_search parameter and (2) unspecified url fields.

4.3CVSS6AI score0.06618EPSS

CVE•added 2006/09/05 11:4 p.m.•27 views

CVE-2006-4539

(1) includes/widgets/module_company_tickets.php and (2) includes/widgets/module_track_tickets.php Client Support Center in Cerberus Helpdesk 3.2 Build 317, and possibly earlier, allows remote attackers to bypass security restrictions and obtain sensitive information via the ticket parameter. NOTE: ...

7.5CVSS6.9AI score0.00562EPSS