Cerberus Cerberus Helpdesk — known CVE vulnerabilities
Every CVE whose affected-product data names Cerberus Cerberus Helpdesk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2006-4539 — CVSS 7.5 (high): (1) includes/widgets/module_company_tickets.php and (2) includes/widgets/module_track_tickets.php Client Support Center in Cerberus…
CVE-2005-4427 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Cerberus Helpdesk allow remote attackers to execute arbitrary SQL commands via the (1) file_id…
CVE-2006-5428 — CVSS 5.0 (medium): rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requesters operation, which allows remote…
CVE-2008-6440 — CVSS 5.0 (medium): Cerberus Helpdesk before 4.0 (Build 600) allows remote attackers to obtain sensitive information via direct requests for "controllers…
CVE-2005-1963 — CVSS 5.0 (medium): Cerberus Helpdesk 0.97.3 allows remote attackers to obtain sensitive information via certain requests to (1) reports.php, (2)…
CVE-2005-3502 — CVSS 5.0 (medium): attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id…
CVE-2005-4428 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in index.php in Cerberus Helpdesk allows remote attackers to inject arbitrary web script or HTML…
CVE-2005-1962 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Cerberus Helpdesk 0.97.3 allows remote attackers to inject arbitrary web script or HTML via the…
CVE-2006-0509 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote attackers to inject…